Created on
08-04-2017
11:44 PM
Edited on
10-28-2022
05:17 AM
By
Stephen_G
Description
This article describes the configuration required to permit FortiAuthenticator to join the AD environment.
Scope
FortiAuthenticator.
Solution
Once a remote LDAP server is added, it's possible to set the parameter required to add FortiAuthenticator as a machine inside the Active Director Environment.
Under the configuration for the remote LDAP server, go to Authentication -> Remote Auth. Servers -> LDAP.
Enable the Windows Active Directory Domain Authentication check box.
Fill in the above fields:
Once configuration is complete, go to Monitor -> Authentication -> Windows AD and see the connection as 'Joined Domain, connected':
Next, 'Use Windows AD Domain Authentication' on the RADIUS clients configuration to use MSCHAP (V2).
If FortiAuthenticator is not correctly joined to the domain, this option will be unavailable.
Related Article:
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.