Hello,
I configured SSL and working well, I want to use the default Fotitoken mobile for more security. I configured the internal e-mail server. I already received activation code in my email.
As usual tried to login to the VPN from my computer and asked for the activation code, I am entered the code, which was received in the mail, but I got the message "Permission Denied (-445)".
how to solve this issue please ?
I want to use fortigaurd message to send activation code to my mobile(how can do this setting)
please help me.
Thanks
Why did no one help me, why everyone here just view.
Hello Cad,
at one side you write about E-Mail code, and on the other side you write about the FortiToken Mobile app, so what would you really like to use?
For FortiToken Mobile:
Create for example a local user, set the username and password and e-mail, check the twofactor authentication box, and select the mobile token number.
After that, go to User & Device > FortiTokens, mark the previously selected token number, and click provision. After that the user should get an e-mail with a picture. Get your mobile phone, open up the app, and scan the barcode of the picture with the phone. Now your token is ready to use, the displayed number is the pin you should enter if you authenticate.
Also a few minutes later the FortiToken should change on the FortiGate GUI to status Assigned.
Thank ohigel for your help, it is working through email
i need your help again , for the second side how to activate Code via SMS.
Thanks
what i need to configure sms on my device?
Hello CAD,
please refer to the administration guide, it's all properly documented there (Two-Factor authentication):
config system sms-server
edit <provider_name>
set mail-server <server_domain-name>
next
end
config user local
edit <user_name>
set sms-phone <user_phone>
set sms-server fortiguard
set two-factor sms
end
Thank for your help oheigl
I am appreciate your support.
please check my configuration below and advise me accordingly
FG200D (sms-server) # show full-configuration
config system sms-server
edit "sms-server"
set mail-server "My domain"
next
end
FG200D(fortitokenuser) # show full-configuration
config user local
edit "fortitokenuser"
set status enable
set type password
set two-factor fortitokenuser
set fortitoken "FTK7889---"
set email-to ''fortitokenuser@Mydomain.com”
set sms-server fortiguard
set sms-phone "My-phone number"
set passwd-policy ''
set passwd-time 2016-10-19 16:22:54
set authtimeout 0
set auth-concurrent-override disable
set passwd ENC ********
next
end
Do you still have your e-mail server configured? I just tried the two factor authentication and it's not working for me either. Maybe you need a fortiguard subscription to use their SMS server. You could try to find a custom one and check if it's working with that.
Also then check if the proper mail is being sent to the SMS provider with this sniffer command:
diagnose sniffer packet any 'port 25' 6
thanks for reply , yes ,mail server still working.
i will try this command , and I will feedback
Thank you for your support.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.