Fortinet black logo

Admin Guide

Users

Copy Link
Copy Doc ID 0a6c5280-a080-11ee-8673-fa163e15d75b:704242
Download PDF

Users

The term "users" refers to end-users of FortiToken Cloud. The Users page displays the following information about FTC end-users in your account. You can open the Users page by clicking Users on the main menu.

Column

Description

Checkbox

This checkbox only applies to users who use FTM for MFA. It enables you to select a user, and then click the NEW FTM TOKEN button to request a new FTM token for the user. See Get a new FTM token.

Username

The username of the end-user.

Status

The status of the user, which can be a combination of any of the following:

  • (active)—The user is enabled.
  • Note: By default, all new users are enabled to use FTC for MFA. The FTC administrator can click this button to quickly deactivate a user when necessary. For more information, see the following bullet.

  • (disabled)—This button enables the administrator to temporarily stop the user from using FTC.
  • Note: If a user is disabled, FTC will deny all log-in requests from the user. It must be noted that disabling a user only prevents the user from using FTC, but does not remove the user from your account. FTC will continue counting it toward your user quota for the user until the user is removed from your account. The admin user can also click this button to enable the user if the user is disabled.

  • (locked)—The user is locked out.
  • Note: FTC locks a user out when the user has exceeded the specified maximum number of log-in attempts allowed. See Realm.

  • (unlocked)—The user is unlocked.
  • Note: FTC automatically unlocks users based on their lockout settings. The admin user can also manually unlock a locked user by clicking the (locked) button.

  • (Temporary token deactivated)—Temporary token is deactivated.

    (Temporary token activated)— Temporary token is activated.

  • (pending)—A token assigned to the user has not been activated yet.
  • (expired)—The user's token activation code has expired.
  • (bypass)—The user is allowed to bypass MFA.
  • (no bypass)—The user is not allowed to bypass MFA.
  • Note: The admin user can enable MFA bypass on a user from here only if Enable Bypass is enabled on the Settings page. See Realm. Otherwise, when you click the (no bypass) icon, a tool tip will appear asking you to turn on Enable Bypass on the Settings page.

MFA Method

The MFA method used by the user, which can be one of the following:

  • FTM (soft token)
  • Email
  • SMS
  • FTK (FortiToken, a hardware token)

Notification Method

The method by which FTC sends FTM token activation/transfer notifications to the user, which can be either of the following:

  • Email—FTC sends FTM token activation/transfer notifications to the user's email address.
  • SMS—FTC sends FTM token activation/transfer notifications by SMS to the user's mobile phone.

Note: If the user's notification method is set to SMS, make sure that the mobile phone number in the system is valid, and that you have enough credits in your account to send OTPs by SMS. For more information, see Realm.

Email

The user's email address.

Note: The admin user is able to edit users' email addresses.

Mobile Phone

The user's mobile phone number, if available.

Note: The phone number must be in the format of "+ Country Code Area Code Phone Number", e.g., +1 4082221234. You can edit an end-user's mobile phone numbers.

Auth Client Count

The number of auth clients that the user uses.

Last Login

The timestamp of the user's last successful login.

Tool Bar

The tool bar slides in from the right end of the row when you hover the cursor over an entry. It has the following options:

  • Edit —Edits the user's settings.

  • Delete—Deletes the user.

Users

The term "users" refers to end-users of FortiToken Cloud. The Users page displays the following information about FTC end-users in your account. You can open the Users page by clicking Users on the main menu.

Column

Description

Checkbox

This checkbox only applies to users who use FTM for MFA. It enables you to select a user, and then click the NEW FTM TOKEN button to request a new FTM token for the user. See Get a new FTM token.

Username

The username of the end-user.

Status

The status of the user, which can be a combination of any of the following:

  • (active)—The user is enabled.
  • Note: By default, all new users are enabled to use FTC for MFA. The FTC administrator can click this button to quickly deactivate a user when necessary. For more information, see the following bullet.

  • (disabled)—This button enables the administrator to temporarily stop the user from using FTC.
  • Note: If a user is disabled, FTC will deny all log-in requests from the user. It must be noted that disabling a user only prevents the user from using FTC, but does not remove the user from your account. FTC will continue counting it toward your user quota for the user until the user is removed from your account. The admin user can also click this button to enable the user if the user is disabled.

  • (locked)—The user is locked out.
  • Note: FTC locks a user out when the user has exceeded the specified maximum number of log-in attempts allowed. See Realm.

  • (unlocked)—The user is unlocked.
  • Note: FTC automatically unlocks users based on their lockout settings. The admin user can also manually unlock a locked user by clicking the (locked) button.

  • (Temporary token deactivated)—Temporary token is deactivated.

    (Temporary token activated)— Temporary token is activated.

  • (pending)—A token assigned to the user has not been activated yet.
  • (expired)—The user's token activation code has expired.
  • (bypass)—The user is allowed to bypass MFA.
  • (no bypass)—The user is not allowed to bypass MFA.
  • Note: The admin user can enable MFA bypass on a user from here only if Enable Bypass is enabled on the Settings page. See Realm. Otherwise, when you click the (no bypass) icon, a tool tip will appear asking you to turn on Enable Bypass on the Settings page.

MFA Method

The MFA method used by the user, which can be one of the following:

  • FTM (soft token)
  • Email
  • SMS
  • FTK (FortiToken, a hardware token)

Notification Method

The method by which FTC sends FTM token activation/transfer notifications to the user, which can be either of the following:

  • Email—FTC sends FTM token activation/transfer notifications to the user's email address.
  • SMS—FTC sends FTM token activation/transfer notifications by SMS to the user's mobile phone.

Note: If the user's notification method is set to SMS, make sure that the mobile phone number in the system is valid, and that you have enough credits in your account to send OTPs by SMS. For more information, see Realm.

Email

The user's email address.

Note: The admin user is able to edit users' email addresses.

Mobile Phone

The user's mobile phone number, if available.

Note: The phone number must be in the format of "+ Country Code Area Code Phone Number", e.g., +1 4082221234. You can edit an end-user's mobile phone numbers.

Auth Client Count

The number of auth clients that the user uses.

Last Login

The timestamp of the user's last successful login.

Tool Bar

The tool bar slides in from the right end of the row when you hover the cursor over an entry. It has the following options:

  • Edit —Edits the user's settings.

  • Delete—Deletes the user.