Fortinet Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
dlmcbeath
New Contributor

FortiAuthenticator for privileged user MFA

I'm trying to set up multifactor authentication for privileged user accounts.  The more I read the more confused I get.  Do I have to install the FAC agent on every workstation in our facility?  Also, does every user have to authenticate to AD using MFA and the FAC agent, or can it be set up just for domain admin accounts?  Thank you for your help.

David McBeath
2 REPLIES 2
bpozdena_FTNT

Hi David,

 

you only need to install the FAC Windows Agent to workstations/servers where you want to enforce 2FA authentication. 

 

The token authentication can be enabled/disabled per-domain bases. You can however exempt individual users/groups from 2FA. More details with screenshots can be found in the install/configuration guide.

 

Boris

dlmcbeath
New Contributor

Thank You

David McBeath