Skip to main content
ITArc
ITArc
New Member
April 22, 2025
Question

Enable two-factor authentication for web applications secured with FortiWeb

  • April 22, 2025
  • 2 replies
  • 711 views


Hello All
I am looking to have Fortiweb secure all of our on-premise external web applications that require Kerberos authentication.
Also, I need to enable MFA for this authentication.
According to the Fortiweb documentation, MFA can be enabled with Fortiauthenticator, which only works with Radius authentication, not Kerberos.
Has anyone tried something similar? Can a scenario like the one below work?
Fortiweb manages Kerberos authentication and keeps the token until it requests MFA via FortiAuthenticator.
If the MFA is okay, Fortiweb should send the Kerberos token to the Web application.

2 replies

AEK
SuperUser
AEK
SuperUser
April 23, 2025

Hi ITArc

I'm not aware that Kerberos support MFA. Does it?

AEK
ITArc
ITArcAuthor
New Member
April 23, 2025

No it doesn't natively support it. what I am looking to do is implementing MFA alongside Kerberos by integrating additional security policy in Fortiweb. but I am incertain if this will work  

Terms & ConditionsAccessibility statement