If the FortiGate does not have a valid subscription to FortiGate Cloud, access through FortiGate Cloud is read-only. See FortiGate Cloud Administration Guide: Feature Comparison.

1. Verify management connectivity using the primary account.
   
   

2. Log in to https://support.fortinet.com/ and select Service -> IAM.
    

    

3. Create an IAM permission profile allowing Read-Write access to the FortiGate Cloud portal.
   
   

   
   
   
   
   

    

4. Create a new IAM user and assign the new profile to this user.
   
   

   
   
   
   

    

5. Generate a password for the IAM user, copy the reset link, and share it with the new user.

6. Using the reset link, the new user must create their account password. Additionally, the user must note down the account ID number.
   
   

7. The new user selects the 'IAM login' option from https://support.fortinet.com/ to log in to their account.
   
   

   
   

    

8. It will verify the user one more time.
   
   

   
   
   

    

9. After logging in, the user will be able to access the 'FortiGate Cloud' portal from the Services option.
   
   

   

    

10. The user is redirected to the FortiGate Cloud portal. Select Assets -> Select Remote Access.
    
    

    

11. The user is directed to a FortiGate login page and may log in with a valid FortiGate administrator.
                                                                                                       
                                                                                                   

12. If the user should use their existing IAM credential to authenticate, FortiCloud single sign-on must be enabled in the FortiGate configuration. This is enabled by default for new devices, see FortOS Administration Guide: FortiCloud SSO.