Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
dhernaez
New Contributor

Solution 2FA currently using forticlient with radius server.

 

I'm looking for a solution for 2FA. currently, we are using forticlient through radius server.

1 REPLY 1
xsilver_FTNT
Staff
Staff

Hi,
there is multitude of possible solutions.
As a base for your research (if you are not going to contact our sales engineers [SE], who are half sales mans and half technicians) might be this documentation:
https://docs.fortinet.com/document/fortigate/7.0.3/administration-guide/323465/fortitokens

 

Basically you can have hardware or mobile tokens in FortiGate, assigned to locally made users who are remote type and so their password is verified against mentioned RADIUS server.


Another possibility, depending on your budget, is to use FortiAuthenticator as centralized authentication/authorization point. Handling all the tokens and either having users locally or again proxying their authentication to some backend servers like mentioned RADIUS, or Active Directory, LDAP, Azure, SAML .. whatever.

Third possibility I see is to use FortiToken Cloud tokens and manage them via web UI.

https://www.fortinet.com/products/smallbusiness/fortitoken-cloud

 

General overview of our access management options is here:

https://www.fortinet.com/products/identity-access-management

 

Tomas Stribrny - NASDAQ:FTNT - Fortinet Inc. - TAC Staff Engineer
AAA, MFA, VoIP and other Fortinet stuff

Labels
Top Kudoed Authors