Fortinet black logo

Creating an admin user

Copy Link
Copy Doc ID a57c1e0e-7279-11ec-bdf2-fa163e15d75b:74718
Download PDF

Creating an admin user

To create a RADIUS administrator with 2FA:
  1. In FortiManager, go to System Settings > Admin > Administrators, and click Create New.
  2. Enter a user name for the administrator.
  3. Choose RADIUS as the Admin Type, and select the RADIUS Server created in the previous step.
  4. Enter and confirm the administrator's password, and click OK.

Once completed, log into the FortiManager GUI with the newly created RADIUS administrator credentials.

After you have entered your username and password, you will be prompted to add the two-factor authentication PIN from FortiToken. Successful authentication will provide the user with access to the FortiManager, and will generate a login event on the FortiAuthenticator.

Creating a wildcard administrator account

Wildcard accounts can also be used in order to avoid specifying each user locally. When this option is enabled, users included on the RADIUS server will be able to authenticate as an administrator on the FortiManager.

To create a wildcard administrator account:
  1. Create a new administrator profile with a descriptive name.
    The name is for internal purposes only and is not used during authentication.
  2. Select Match all users in a remote server group as the administrator Admin Type.
  3. Choose the RADIUS Server previously created.
  4. Select an Admin Profile, and click OK.

Creating an admin user

To create a RADIUS administrator with 2FA:
  1. In FortiManager, go to System Settings > Admin > Administrators, and click Create New.
  2. Enter a user name for the administrator.
  3. Choose RADIUS as the Admin Type, and select the RADIUS Server created in the previous step.
  4. Enter and confirm the administrator's password, and click OK.

Once completed, log into the FortiManager GUI with the newly created RADIUS administrator credentials.

After you have entered your username and password, you will be prompted to add the two-factor authentication PIN from FortiToken. Successful authentication will provide the user with access to the FortiManager, and will generate a login event on the FortiAuthenticator.

Creating a wildcard administrator account

Wildcard accounts can also be used in order to avoid specifying each user locally. When this option is enabled, users included on the RADIUS server will be able to authenticate as an administrator on the FortiManager.

To create a wildcard administrator account:
  1. Create a new administrator profile with a descriptive name.
    The name is for internal purposes only and is not used during authentication.
  2. Select Match all users in a remote server group as the administrator Admin Type.
  3. Choose the RADIUS Server previously created.
  4. Select an Admin Profile, and click OK.