Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Administration Guide

    Home FortiAuthenticator 6.4.8 Administration Guide
    6.4.8
    6.6.2
    6.6.1
    6.6.0
    6.5.5
    6.5.4
    6.5.3
    6.5.2
    6.5.1
    6.5.0
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.3.4
    6.3.3
    6.3.2
    6.3.1
    6.3.0
    6.2.2
    6.2.1
    6.2.0
    6.1.3
    6.1.2
    6.1.1
    6.1.0
    6.0.8
    6.0.7
    6.0.6
    6.0.5
    6.0.4
    6.0.3
    6.0.2
    6.0.1
    6.0.0
    5.5.0
    5.4.0
    5.3.0
    5.2.0
    5.1.0
    5.0.0
    4.3.0
    4.2.1
    4.2.0

    Windows event log sources

    Windows event log sources

    FortiAuthenticator must be configured to communicate with the domain controller if Active Directory (AD) will be used to ascertain group information.

    A domain controller entry can be disabled without deleting its configuration. This can be useful when performing testing and troubleshooting, or when moving controllers within your network.

    In order to properly discover the available domains and domain controllers, the DNS settings must specify a DNS server that can provide the IP addresses of the domain controllers. See DNS.
    To add a domain controller:
    1. Go to Fortinet SSO Methods > SSO > Windows Event Log Sources.
    2. Select Create New to open the Create New Windows Event Log Source window.

    3. Enter the following information:
      NetBIOS nameName of the domain controller as it appears in NetBIOS.
      Display nameUnique name to easily identify this domain controller.
      IPNetwork IP address of the controller.
      Account

      Account name used to access logon events.

      The user must have read access to the logs using the built in AD security group "Event Log Readers."

      PasswordPassword for the above account.
      Server typeSelect either Domain controller or Exchange server as the server type.
      DisableDisable the domain controller without losing any of its settings.
      PriorityDefine multiple domain controllers for the same domain. Each can be designated as Primary or Secondary. The Primary unit is accessed first.
      Enable secure connectionEnable a secure connection over either LDAPS or STARTTLS with a CA certificate.
    4. Select OK.

      By default, FortiAuthenticator uses auto-discovery of Domain Controllers. If you want to restrict operation to the configured domain controllers only, go to Fortinet SSO Methods > SSO > General and enable Restrict auto-discovered domain controllers to configured Windows event log sources and remote LDAP servers. See General settings.

    Previous
    Next

    Windows event log sources

    Windows event log sources

    FortiAuthenticator must be configured to communicate with the domain controller if Active Directory (AD) will be used to ascertain group information.

    A domain controller entry can be disabled without deleting its configuration. This can be useful when performing testing and troubleshooting, or when moving controllers within your network.

    In order to properly discover the available domains and domain controllers, the DNS settings must specify a DNS server that can provide the IP addresses of the domain controllers. See DNS.
    To add a domain controller:
    1. Go to Fortinet SSO Methods > SSO > Windows Event Log Sources.
    2. Select Create New to open the Create New Windows Event Log Source window.

    3. Enter the following information:
      NetBIOS nameName of the domain controller as it appears in NetBIOS.
      Display nameUnique name to easily identify this domain controller.
      IPNetwork IP address of the controller.
      Account

      Account name used to access logon events.

      The user must have read access to the logs using the built in AD security group "Event Log Readers."

      PasswordPassword for the above account.
      Server typeSelect either Domain controller or Exchange server as the server type.
      DisableDisable the domain controller without losing any of its settings.
      PriorityDefine multiple domain controllers for the same domain. Each can be designated as Primary or Secondary. The Primary unit is accessed first.
      Enable secure connectionEnable a secure connection over either LDAPS or STARTTLS with a CA certificate.
    4. Select OK.

      By default, FortiAuthenticator uses auto-discovery of Domain Controllers. If you want to restrict operation to the configured domain controllers only, go to Fortinet SSO Methods > SSO > General and enable Restrict auto-discovered domain controllers to configured Windows event log sources and remote LDAP servers. See General settings.

    Previous
    Next