Our FortiGate is connected to our AD. The users have corresponding groups on the AD and can sign in to the corresponding FortiClient connections. The users are NOT defined on the FortiGate, not as local and not as LDAP.
Now we would like to make them use 2FA in the FortiClient via e-mail, so without using FortiTokens, FortiAuthenticator or similar.
Is there any way to do this without having to create users on the FortiGate?
We are talking of at least 300 users, I'd say. Possibly even more.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.