Technical Tip: Limiting concurrent user authentica...

FortiGate

FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.

Article Id 199277

Description

This article describes how to limit concurrent user authentication.

Scope

ForitOS all.

Solution

The same user can be used for multiple concurrent authentications.

Its maximum number can be limited globally, per user-group or per user only via CLI.

Globally

# config system global

set policy-auth-concurrent <number_of_max_concurrent_users>

end

Per user-group

# config user group

edit <group-name>

set auth-concurrent-override enable

setauth-concurrent-value <number_of_max_concurrent_users>

end

Per user

# config user local
   edit <user-name>
     set auth-concurrent-override enable
     set auth-concurrent-value <number_of_max_concurrent_users>
   next
end

Below is the error message that is displayed when the limit is crossed

6223

Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Fortinet Community

Technical Tip: Limiting concurrent user authentication