Description | This article describes RADIUS realms and how to use multiple realms to authenticate users from multiple identity sources. |
Scope | Any supported version of FortiAuthenticator with local users and remote LDAP and RADIUS users. |
Solution |
For more information about FortiAuthenticator realms, see the documentation.
Authentication realms are created by going to Authentication -> User Management -> Realms. Note: the name defined here is the realm that needs to be appended to the username when authenticating.
In this example, a RADIUS policy has been configured with multiple realms for authenticating users from a Local database and the remote LDAP and RADIUS servers.
Intended authentication objectives for this policy:
There are three types of username format that can be used:
In this example, the format 'username@realm' is configured to be used on the policy.
Realms will be matched from top to bottom.
Username used:
Related article (explains the "Filter" button of the screenshot): |