I'm using an "admin-guest" that can only create guest account.
I can choose if username/password are auto-generated, “admin-guest” can’t change it, settings are locked.
But it’s only when creating a new user… auto-generated login & password can be change after. Ok for password changing, not for username !
In order to enforce Internet Access Policy, I ask for :
1st] restrict expiration time (lock the parameter with the one I want on guest-group)
for example Wifi-Guest-Daily is a guest-group with 8 hours validity after login
and Wifi-Guest-Month is a guest-group with 30 days validity after login
and so on...
2nd] those settings come with the one above :
ability to restrict (or not) an admin-guest from changing :
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.