Skip to main content
gcortes1
Staff
gcortes1
Staff
January 21, 2026

Technical Tip: How to configure wildcard admin authentication for FortiSandbox Administrator using specific User Group

  • January 21, 2026
  • 0 replies
  • 146 views
Description This article explains how to allow the administration access to the FortiSandbox for Specifc LDAP user group.
Scope FortiSandbox.
Solution

Configure an LDAP server:
Go to System Settings -> LDAP Servers -> Create New.

 

Ldap_new.png

 

Expand the 'Advanced Options' section and define the following fields:
Attributes: members.
Filter: (&(objectClass=group)(cn=*)).
Group: 'Required Filter'.

 

Ldap_adv.png

 

Create a user account with the wildcard setting enabled:
Go to System -> Administrators -> Create New -> Admin type Wildcard.

 

Remote_Admin.png

 

Verification:
After the configuration, it is possible to validate the LDAP server's response for the created group.

In this case, the admin group is: 'FSA-Admin,CN=Users,DC=lab,DC=local'.

And the admin user is: 'adminfsa1' or 'adminfsa2'.

 

Ldap_Filter_test.png

 

Go to System -> Administrators -> Select the option: 'Test Login'.

 

Ldap_test_login.png

 

Result:

 

Ldap_test_login_ok.PNG

 

After the configuration, access can be tested for the administrator users.

For the adminfsa1 administrator account:

 

Ldap_test_login_ok.PNG

 

Go to Log & Report -> Events -> System Events -> Filter Message= Administrator.

 

Ldap_test_login_log.png
    Terms & ConditionsAccessibility statement