Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Administration Guide

    Home FortiAuthenticator 6.3.0 Administration Guide
    6.3.0
    6.6.2
    6.6.1
    6.6.0
    6.5.5
    6.5.4
    6.5.3
    6.5.2
    6.5.1
    6.5.0
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.3.4
    6.3.3
    6.3.2
    6.3.1
    6.3.0
    6.2.2
    6.2.1
    6.2.0
    6.1.3
    6.1.2
    6.1.1
    6.1.0
    6.0.8
    6.0.7
    6.0.6
    6.0.5
    6.0.4
    6.0.3
    6.0.2
    6.0.1
    6.0.0
    5.5.0
    5.4.0
    5.3.0
    5.2.0
    5.1.0
    5.0.0
    4.3.0
    4.2.1
    4.2.0

    Identity and Account Management (IAM)

    Identity and Account Management (IAM)

    FortiAuthenticator allows you to configure IAM users and accounts.

    To view IAM users and accounts, go to Authentication > User Management > IAM, and toggle between Users or Accounts.

    The IAM users and accounts list shows the following information:

    Create New

    Select to create an IAM account or user.

    Delete

    Select to delete the selected IAM accounts or users.

    Import

    Select to import IAM users.

    In the Import IAM Users window, enter information as shown in To create an IAM user.

    Edit

    Select to edit the selected IAM account.

    In the Edit IAM Account window, enter information as shown in To create an IAM account.
    To create an IAM account:
    1. Go to Authentication > User Management > IAM.
    2. Select Accounts, and then select Create New.
    3. Enter the following information:

      Account Name

      Enter the account name. The name must be unique among all the IAM accounts.

      Alias

      Enter alias. This must be unique among all the IAM accounts.
    4. Click OK.
    To create an IAM user:
    1. Go to Authentication > User Management > IAM.
    2. Select Users, and then select Create New.
    3. Enter the following information:
      Username

      Enter the account name. The name must be unique within the selected IAM account.

      Administrator

      Enable to give this user administrator privileges.

      An administrator can manage users within the same account.

      Account

      From the dropdown, select the account to add this user to.

      Use the pen icon to edit the selected account, + to create a new IAM account, and x to delete the selected IAM account.

      User Type

      Select the user account type, either Local or Remote LDAP.

      Local User

      From the dropdown, select the local user. This option is only available when the User Type is Local.

      Remote LDAP server

      From the dropdown, select the Remote LDAP server. This option is only available when the User Type is Remote LDAP.

      LDAP User

      From the dropdown, select the LDAP user. This option is only available when the User Type is Remote LDAP.
    4. Click OK.
    Previous
    Next

    Identity and Account Management (IAM)

    Identity and Account Management (IAM)

    FortiAuthenticator allows you to configure IAM users and accounts.

    To view IAM users and accounts, go to Authentication > User Management > IAM, and toggle between Users or Accounts.

    The IAM users and accounts list shows the following information:

    Create New

    Select to create an IAM account or user.

    Delete

    Select to delete the selected IAM accounts or users.

    Import

    Select to import IAM users.

    In the Import IAM Users window, enter information as shown in To create an IAM user.

    Edit

    Select to edit the selected IAM account.

    In the Edit IAM Account window, enter information as shown in To create an IAM account.
    To create an IAM account:
    1. Go to Authentication > User Management > IAM.
    2. Select Accounts, and then select Create New.
    3. Enter the following information:

      Account Name

      Enter the account name. The name must be unique among all the IAM accounts.

      Alias

      Enter alias. This must be unique among all the IAM accounts.
    4. Click OK.
    To create an IAM user:
    1. Go to Authentication > User Management > IAM.
    2. Select Users, and then select Create New.
    3. Enter the following information:
      Username

      Enter the account name. The name must be unique within the selected IAM account.

      Administrator

      Enable to give this user administrator privileges.

      An administrator can manage users within the same account.

      Account

      From the dropdown, select the account to add this user to.

      Use the pen icon to edit the selected account, + to create a new IAM account, and x to delete the selected IAM account.

      User Type

      Select the user account type, either Local or Remote LDAP.

      Local User

      From the dropdown, select the local user. This option is only available when the User Type is Local.

      Remote LDAP server

      From the dropdown, select the Remote LDAP server. This option is only available when the User Type is Remote LDAP.

      LDAP User

      From the dropdown, select the LDAP user. This option is only available when the User Type is Remote LDAP.
    4. Click OK.
    Previous
    Next