Help
FortiAuthenticator
FortiAuthenticator provides centralized authentication services for the Fortinet Security Fabric including multi-factor authentication, single sign-on services, certificate management, and guest management.
dbu
Staff
Staff

Created on ‎10-03-2023 03:28 AM Edited on ‎05-19-2025 12:45 AM By Community Manager

Article Id 276846

Technical Tip: FortiAuthenticator Self-Register Portal with Sponsor Approval

Description This article describes how to configure a self-service portal with local and remote Sponsor groups.
Scope FortiAuthenticator v6.6.2, LDAP.
Solution

In this scenario, there are two groups of sponsors, one locally defined on the FortiAuthenticator and another defined on the remote LDAP server. 

 

tempsnip3.PNG

 

Portal configuration.

 

To create a portal:

Go to Authentication -> Portals -> Portals, and select Create New.

 

Expand the Account Registration and make sure it is Enabled:

  • Enable and Require administrator approval.
  • Enable the Select User Groups allowed to approve new user registrations.
  • Add the sponsor groups for approval.

 

kb2.png

 

Policies.

 

Configure the portal policy:

 

tempsnip1.png

 

tempsnip2.png

 

Portal Access.

The portal can be accessed at the URL mentioned in the policy:

https://fac.testlab.local/portal/selfservice/selfservicepolicy/

 

vip.PNG

 

Select the Sponsor drop-down menu to select the Sponsor for approval.

 

rdp.PNG

 

Note:

Ensure Sponsor users have an email address configured, otherwise, it will not be available from the drop-down menu.

 

2206
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2026 Fortinet, Inc. All Rights Reserved.