Help
FortiAuthenticator
FortiAuthenticator provides centralized authentication services for the Fortinet Security Fabric including multi-factor authentication, single sign-on services, certificate management, and guest management.
darisandy
Staff
Staff

Created on ‎12-07-2025 11:27 PM

Article Id 421731

Technical Tip : How to Configure FortiAuthenticator as TACACS+ Client

Description This article describes how to configure FortiAuthenticator as a TACACS+ Client.
Scope FortiAuthenticator v6.6.x.
Solution

Admin access into FortiAuthenticator can be configured to use the TACACS+ Server user database.

 

FortiAuthenticator does not have a wildcard admin option like FortiGate. Any user who should have administrator permissions on FortiAuthenticator must either be created locally or created/imported under remote users.

 

Create TACACS+ Server: Go under Authentication -> Remote Auth. Servers -> TACACS+ -> Create New.

 

tacacs01.png

 

Import Remote Users: Go under Authentication -> User Management -> Remote Users -> TACACS+ -> Create New.

 

tacacs02.png

 

tacacs03.png

 

This 'user1' needs to be available or created previously on the TACACS+ Server. 'user1' username can then be used to log in to FortiAuthenticator Web GUI.

 

tacacs04.png

 

20
0 Kudos
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.