Help
FortiPAM
FortiPAM allows you to protect, isolate and secure privileged account credentials, manage and control privileged user access, and monitor and record privileged account activity.
rvillaroman
Staff & Editor
Staff & Editor

Created on ‎08-21-2025 11:02 PM

Article Id 407627

Technical Tip: How to use FortiPAM secret to generate MFA on Azure Portal

Description

This article describes how to use a FortiPAM secret to generate MFA for Azure portal login.
Scope

FortiPAM v1.4.0 and later
Solution

Here are the steps  to add Azure MFA to a FortiPAM secret:

  1. Get the token seed on the Azure user account.

 

TOTP-seed.png

 

  1. Import the TOTP shared key to the FortiPAM as a third-party token.

 

TOTP.PNG

 

Note:

The shared key must be converted to all uppercase (standard base32) to become valid. 

 

  1. If it still shows as invalid even after converting the shared key to all uppercase, try to import it on the CLI.

 

config secret data
    edit secret_xxx
        config totp
            set status enable
            set use-template-setting disable
            set shared-key GCCFNJJVMFRTZ5MY
        end
    end
end

 

  1. After successfully adding the shared key to the FortiPAM secret, it will generate an MFA verification code.

 

 

verification code.png

 

  1. Import the code for the Azure account MFA verification.

 

auth app.png
Labels:
123
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.