Fortinet black logo

Agent configuration

Copy Link
Copy Doc ID 72346260-aa62-11ea-8b7d-00505692583a:351993
Download PDF

Agent configuration

Once installed the FortiAuthenticator Agent Configuration utility will automatically open. This can also be started via the Start menu.

To configure FortiAuthenticator Agent for Microsoft Windows:
  1. Go to Start > All Programs > Fortinet > FortiAuthenticator Agent > FortiAuthenticator Agent for Microsoft Windows.

  2. Select the General tab, and click the Two Factor Authentication > Configure button.
    Note

    The Simulation tab, shown in the image below, is used for the testing of the login process and is not used in normal operation.

  3. In the Two Factor Authentication configuration screen, configure the IP address, username and API key obtained in FortiAuthenticator Configuration.

  4. For test purposes, disable Server Certificate Verification. This can be configured once the installation has been tested and proven working.

    If there is a server subject name or CA certificate file specified, enable Verify Server Certificate, delete the entries and disable Verify Server Certificate. Authentication may fail in some circumstances if this is not performed. This issue will be resolved in a future release.

  5. Select the Domain tab and select the domains you want to include in the two-factor authentication process by clicking the arrow.

Agent configuration

Once installed the FortiAuthenticator Agent Configuration utility will automatically open. This can also be started via the Start menu.

To configure FortiAuthenticator Agent for Microsoft Windows:
  1. Go to Start > All Programs > Fortinet > FortiAuthenticator Agent > FortiAuthenticator Agent for Microsoft Windows.

  2. Select the General tab, and click the Two Factor Authentication > Configure button.
    Note

    The Simulation tab, shown in the image below, is used for the testing of the login process and is not used in normal operation.

  3. In the Two Factor Authentication configuration screen, configure the IP address, username and API key obtained in FortiAuthenticator Configuration.

  4. For test purposes, disable Server Certificate Verification. This can be configured once the installation has been tested and proven working.

    If there is a server subject name or CA certificate file specified, enable Verify Server Certificate, delete the entries and disable Verify Server Certificate. Authentication may fail in some circumstances if this is not performed. This issue will be resolved in a future release.

  5. Select the Domain tab and select the domains you want to include in the two-factor authentication process by clicking the arrow.