Technical Tip: Provision the FortiToken Cloud for firewall administrator account
Description
This article describes how to provision FortiToken cloud for firewall administrator account.
Related links.
https://www.fortinet.com/content/dam/fortinet/assets/data-sheets/FortiToken_Cloud.pdf
https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/1fa881fc-9c3f-11e9-81a4-00505692583a/FortiToken-Cloud-4.3.a-Admin-Guide.pdf
Solution
FortiToken Cloud can be provisioned to FortiGate administrators as well as local firewall users.
First, enable this feature from the CLI:
Log out and log back in for the change to take effect.
To assign FortiToken Cloud two-factor authentication to an administrator:
1) Go to System -> Administrators. The list of administrators appears.
2) Select an administrator to edit the configuration (in this example: ftm-cloud).
3) Select the toggle to enable two-factor authentication. There are two authentications types available: FortiToken(mobile) and FortiToken Cloud.
4) Select FortiToken Cloud as the 'Authentication Type'.
5) Select 'OK'.
This article describes how to provision FortiToken cloud for firewall administrator account.
Related links.
https://www.fortinet.com/content/dam/fortinet/assets/data-sheets/FortiToken_Cloud.pdf
https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/1fa881fc-9c3f-11e9-81a4-00505692583a/FortiToken-Cloud-4.3.a-Admin-Guide.pdf
Solution
FortiToken Cloud can be provisioned to FortiGate administrators as well as local firewall users.
First, enable this feature from the CLI:
# config system globalNote.set fortitoken-cloud-service enableend
Log out and log back in for the change to take effect.
To assign FortiToken Cloud two-factor authentication to an administrator:
1) Go to System -> Administrators. The list of administrators appears.
2) Select an administrator to edit the configuration (in this example: ftm-cloud).
3) Select the toggle to enable two-factor authentication. There are two authentications types available: FortiToken(mobile) and FortiToken Cloud.
4) Select FortiToken Cloud as the 'Authentication Type'.
5) Select 'OK'.
From CLI.
Assign the FortiCloud token to administrators using the fortitoken-cloud option:
Assign the FortiCloud token to administrators using the fortitoken-cloud option:
# config system adminIn the administrators list under the two-factor authentication column, the FortiToken Cloud icon for the administrator ftm-cloud is visible.
edit "test-cl3"
set type password
set two-factor fortitoken-cloud
set email-to .........
next
end