Fortinet black logo

Administration Guide

Home FortiAuthenticator 6.6.1 Administration Guide
6.6.1
6.6.1
6.6.0
6.5.4
6.5.3
6.5.2
6.5.1
6.5.0
6.4.9
6.4.8
6.4.7
6.4.6
6.4.5
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0
6.3.4
6.3.3
6.3.2
6.3.1
6.3.0
6.2.2
6.2.1
6.2.0
6.1.3
6.1.2
6.1.1
6.1.0
6.0.8
6.0.7
6.0.6
6.0.5
6.0.4
6.0.3
6.0.2
6.0.1
6.0.0
5.5.0
5.4.0
5.3.0
5.2.0
5.1.0
5.0.0
4.3.0
4.2.1
4.2.0

Audit reports

Audit reports

User audit reports can be generated in order to comply with audit requirements. These reports include various attributes for all users configured on the FortiAuthenticator.

Users audit

To generate and download user audit reports, go to Logging > Audit Reports > Users Audit and select Download User Audit. A CSV format file will be saved to the computer.

Enable Only include administrator & sponsor accounts only to include administrator and sponsor accounts in the user audit report.

Note: The option is disabled by default.

The following attributes are included in the .csv file:

username

Username.

user type

Set to either local, ldap, or radius.

remote server name

Set to either ldap or radius, or empty for local.

first name

User's first name.

last name

User's last name.

email address

User's email address.

active

Set to either t for true/enabled or f for false/disabled.

role

Set to either user, sponsor, or administrator.

admin profile

One of the following:

  • Set to full if role is set to administrator with full permissions.
  • Set to their admin profile names separated by "/" for multiple profiles (e.g. logging/saml) if role is set to administrator without full permissions.
  • Empty is role is set to either user or sponsor.

lb synced

Load-balancing status.

trusted subnets

List of trusted subnets.

Note: Values in the column can be a comma-separated list.

created

Date and time of account creation.

last used

Date and time of last login.

password auth

Password authentication status.

token type

Type of token-based authentication.

token info

Token information.
Previous
Next

Audit reports

User audit reports can be generated in order to comply with audit requirements. These reports include various attributes for all users configured on the FortiAuthenticator.

Users audit

To generate and download user audit reports, go to Logging > Audit Reports > Users Audit and select Download User Audit. A CSV format file will be saved to the computer.

Enable Only include administrator & sponsor accounts only to include administrator and sponsor accounts in the user audit report.

Note: The option is disabled by default.

The following attributes are included in the .csv file:

username

Username.

user type

Set to either local, ldap, or radius.

remote server name

Set to either ldap or radius, or empty for local.

first name

User's first name.

last name

User's last name.

email address

User's email address.

active

Set to either t for true/enabled or f for false/disabled.

role

Set to either user, sponsor, or administrator.

admin profile

One of the following:

  • Set to full if role is set to administrator with full permissions.
  • Set to their admin profile names separated by "/" for multiple profiles (e.g. logging/saml) if role is set to administrator without full permissions.
  • Empty is role is set to either user or sponsor.

lb synced

Load-balancing status.

trusted subnets

List of trusted subnets.

Note: Values in the column can be a comma-separated list.

created

Date and time of account creation.

last used

Date and time of last login.

password auth

Password authentication status.

token type

Type of token-based authentication.

token info

Token information.
Previous
Next