Description
This article describes about logging into the FortiAuthenticator with remote LDAP users.
Scope
FortiAuthenticator
Solution
To login to FortiAuthenticator with remote LDAP users, add LDAP sever on FortiAuthenticator.
Go to Authentication - > Remote Auth.Servers - > LDAP - > Create New.
Create a new group, Authentication - > User Management - > User group and specify filter for which group that needs to be imported.
Go to remote users, users imported could be found here, select user and assign free token from the list.
Create a realm on FortiAuthenticator, under User Management.
Go to System - > Administration - > System Access, on the section for realms, add new realm, specify new realm created and also assign previous group created before.
There in no need to create Radius Policy on FortiAuthenticator.
Test by logging into FortiAuthenticator, a token may be required.
Check from the debug logs, https:<fac-ip>/debug/radius, that user is authenticated successfully.
