| Description | This article describes how to configure TACACS+ login for a user of an AAA server. |
| Scope | FortiWeb and an AAA server. |
| Solution |
In the FortiWeb configuration for an AAA server, navigate to User -> Remote Server -> TACACS+ Server -> Create New.
Create an Admin Group and add the TACACS+ User entry in the above step under User -> User Group -> Admin Group.
Create an Administrator account and select the above entry created before under System -> Admin -> Administrators -> Create New -> Administrator.
Note: The username configured in the Active Directory/AAA server should match exactly with the username in the FortiWeb configuration under Admin. If the intention is for the AAA server to send an access profile to FortiWeb, configure Authorization in the AAA server with the following settings:
Note: If the AAA server is not configured to send authorization from an AAA server, FortiWeb will assign access profiles configured with users.
To configure FortiAuthenticator, see the following documentation: |
