Description This article describes how to log in using an IAM account on
FortiAuthenticator Cloud. Scope FortiAuthenticator Cloud. Solution
Access to FortiAuthenticator Cloud is managed by FortiCloud SSO
authentication. When there is a request to log...
Description This article describes how to assign hardware tokens to
users in FortiAuthenticator Cloud (FortiTrust ID). Scope
FortiAuthenticator Cloud, FortiTrust ID. Solution FortiTrust Identity is
an Identity and Access Management as a Service (IDaa...
Description This article describes how to configure SAML SSO login in
FortiPAM using FortiAuthenticator as SAML IdP with remote LDAP users.
Scope FortiPAM, FortiAuthenticator. Solution A FortiPAM can act as
SAML-SP (Service Provider) requesting authe...
Description This article describes how to configure LDAPS with FortiPAM
with Microsoft AD as CA. Scope FortiPAM. Solution In this case,
Microsoft Windows Active Directory has been used as Certificate
Authority. These tests are performed with Windows ...
Description This article describes how to log in to FortiPAM using
remote LDAP users with a token assigned in FortiAuthenticator. Scope
FortiPAM, FortiAuthenticator. Solution Add the FortiAuthenticator as
Radius Server in FortiPAM under User Manageme...
Hi @Moxeq , This is used on FGT as a backward compatibility for other
third party devices that cannot prompt for the field to prompt entering
token. So in this case they can provide password+otp together in the
password field.
Hi @fireon Have you checked the below documentation this is used with
FMG/FAZ, but it may help to crosscheck with your configurations.
https://community.fortinet.com/t5/FortiManager/Technical-Tip-SAML-SSO-Configuration-with-Keycloak/ta-p/219655
Hi @s3 Is there any FortiAuthenticator on your environment or you have
only FGT in place. Using FAC you may configure Saml with Azure and
returning these events on FAC as FSSO and than FAC forwards these events
to FGT and with FSSO groups that you ca...
Hi @FedeS I believe that these 2 tokens are trial tokens from each FGT
when newly purchased every device has 2 trial token that can be used. In
HA these trial tokens cannot be used or moved from one FGT to another
FGT SN. If you have additional FTM l...
Hi @80211WiGuy You can achieve this by configuring CN of the Group on
FGT and on FAC side you can configure as assertion attribute Ldap group
membership.