Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
lpi
New Contributor II

Created on ‎11-10-2023 03:10 AM Edited on ‎11-10-2023 03:11 AM

Fortiauthenticator and FTM push issue

Hi,

I'm looking for a solution to be able to use FTM on the agent and the forti authenticator.

My setup is this one, FACv6.5.3, Fortigate 7.4.1, AD2K19 and agent version 5.

 

FTM is working the SSL-VPN firewall with local user and token.

Token authentication is working on the SSL-VPN with FAC radius.

Token authentication is working on the agent with password or PIN.

 

But in both last cases, FTM is not working.

Public IP/FQDN for FortiToken Mobile has been configured on the FAC using FQDN.

 

Do you have an idea ?

Regards

Laurent

 

Labels:
1725
0 Kudos
5 REPLIES 5
Anthony_E
Community Manager
Community Manager

Created on ‎11-12-2023 09:25 PM

Hello Laurent,


Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.


Thanks,

Anthony-Fortinet Community Team.
1691
0 Kudos
pminarik
Staff
Staff

Created on ‎11-13-2023 03:02 AM

1, Do you have push enabled in the Agent app as shown here? https://docs.fortinet.com/document/fortiauthenticator/6.5.0/fortiauthenticator-agent-for-microsoft-w... (first screenshot, "Allow Push Authentication")

 

2, Does the mobile app receive the notification when a user attempts to get a push notification?

[ corrections always welcome ]
1676
lpi
New Contributor II

Created on ‎11-23-2023 10:41 PM

Hello,

Thanks for your email, yes both have been applied correctly. I found the problem in a short video that talks about an earlier version. The FAC push port must of course be different from the Firewall port and a VIP is required. Now everything works perfectly but I'll check if it's not a security problem.

Regards

1584
0 Kudos
Markus_M
Staff
Staff
In response to lpi

Created on ‎11-24-2023 12:32 AM

Hi lpi,

push notifications are an interesting way for end users, but also difficult for the admins. I strongly suggest going through the best practices on FortiAuthenticator:
https://community.fortinet.com/t5/FortiAuthenticator/Technical-Tip-Best-practices-on-hardening-Forti...
That covers a bunch of security concerns without impacting your user base, if done right.

 

Best regards,

 

Markus

1573
lpi
New Contributor II

Created on ‎11-24-2023 12:50 AM

Hi Markus,

Excellent, I'll read the document carefully. 

Best regards

Laurent

 

1568
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.