Fortinet black logo

Cookbook

Configure two-factor authentication on FortiAuthenticator

Copy Link
Copy Doc ID 6afcbdba-0b23-11ea-8977-00505692583a:125367
Download PDF

Configure two-factor authentication on FortiAuthenticator

To configure a remote user sync rule:
  1. Go to Authentication > User Management > Remote User Sync Rules, and click Create New.
  2. Configure the following settings:
    1. Name: Enter a name for the sync rule (e.g. AD).
    2. Remote LDAP: Select your remote LDAP server.
  3. Configure the token-based sync priority settings under Synchronization Attributes by enabling and ordering the authentication sync priorities.
  4. This example scenario uses FortiToken Cloud for two-factor authentication, so the priority is FortiToken Cloud followed by None (users are synced explicitly with no token-based authentication).

  5. Select or create a user group to associate users with from the dropdown menu.
  6. The remaining settings can be configured to your preference or left in their default state.
  7. Click OK to save your changes when completed.
To configure remote users with two-factor authentication:
  1. Go to Authentication > User Management > Remote Users and Import users from your Active Directory account.
  2. Edit a user and enable Token-based authentication, and select FortiToken > Cloud as the delivery method.
  3. Click OK to save your changes.

Configure two-factor authentication on FortiAuthenticator

To configure a remote user sync rule:
  1. Go to Authentication > User Management > Remote User Sync Rules, and click Create New.
  2. Configure the following settings:
    1. Name: Enter a name for the sync rule (e.g. AD).
    2. Remote LDAP: Select your remote LDAP server.
  3. Configure the token-based sync priority settings under Synchronization Attributes by enabling and ordering the authentication sync priorities.
  4. This example scenario uses FortiToken Cloud for two-factor authentication, so the priority is FortiToken Cloud followed by None (users are synced explicitly with no token-based authentication).

  5. Select or create a user group to associate users with from the dropdown menu.
  6. The remaining settings can be configured to your preference or left in their default state.
  7. Click OK to save your changes when completed.
To configure remote users with two-factor authentication:
  1. Go to Authentication > User Management > Remote Users and Import users from your Active Directory account.
  2. Edit a user and enable Token-based authentication, and select FortiToken > Cloud as the delivery method.
  3. Click OK to save your changes.