Fortinet Document Library

Version:


Table of Contents

22.1.0
Download PDF
Copy Link

Adding IAM users

Use the Add IAM User wizard to configure a user's permissions and generate their login credentials.

To save time, you can apply an existing user's permissions to the new user, or assign the user to a group.

New users will have their own asset and portal permissions until you assign them to a group.

To create an IAM user with the wizard:
  1. Go to IAM User. The IAM Users page opens.
  2. Click ADD IAM USER. The User Details pane opens.
  3. (Optional) Click Apply same permissions as existing User , and then select a user from the dropdown. You can configure the permissions later.
  4. Enter the user's details.

    Username Type the username with no spaces.
    Full Name Type the user's first and last name.
    Email Type the user's email address.
    Phone Select the country code from the dropdown, and type the user's phone number.
    Description (Optional) Type a description of the user.

  5. (Optional) Add the user to an IAM user group. See IAM user groups.

    1. Click IAM User Group, and select a group from the dropdown. The Effect Asset Permissions and the Effective Portal Permissions are displayed.
    2. Click Next, and proceed to Step 10.
  6. From the Asset Permissions dropdown, select an asset folder. See Asset and portal permissions
  7. Configure the Portal Permissions.
    1. Click the Edit button in the portal row.
      Permission Description
      Allow Portal Access

      Toggle Yes to allow access to a portal.

      Access Type

      The Access Type is defined by the portal. For example, the access types for Asset Management are:

      • Admin

      • Read/Only

      • Read/Write

      Whereas the access types for FortiOS SSO are:

      • SuperAdmin

      • Read Only

      Additional Permission

      Additional permissions vary depending on the portal.

      Asset Management:

      • Recieve Renewal Notification

      FortiCare (Read Only or Read/Write)

      • Customer Serivce

      • Technical Assistance

      • RMA/DOA

      Note

      Some portals have user roles that are specific to that portal. When a portal has a unique user role, the Custom option is displayed. For information about the role, see the product's documentation.

    2. Click Confirm.
  8. Configure the Cloud Management & Services permissions.
    1. Click Add (+), then select a service from the list, and click ADD.
    2. Click the Edit button, and configure the portal permissions.
      Permission Description
      Allow Portal Access Toggle Yes to grant access to the service.
      AccessType

      The Access Type is defined by the portal. For example, the access types for Asset Management are:

      • Admin

      • Read/Only

      • Read/Write

      Whereas the access types for FortiOS SSO are:

      • SuperAdmin

      • Read Only

    3. Click Confirm.

  9. Click Next. The Confirmation page is displayed.
  10. Review the user information, and click Confirm. The user's details are displayed.

  11. Click Download CSV to download the new user's credentials.

Send the credentials to the user. New IAM users are required to perform a validation check the first time they log in to a portal. See Validating new IAM users.

After the user is created, send the login credentials to the user. New users are required to update their credentials when they log in to a portal.

Adding IAM users

Use the Add IAM User wizard to configure a user's permissions and generate their login credentials.

To save time, you can apply an existing user's permissions to the new user, or assign the user to a group.

New users will have their own asset and portal permissions until you assign them to a group.

To create an IAM user with the wizard:
  1. Go to IAM User. The IAM Users page opens.
  2. Click ADD IAM USER. The User Details pane opens.
  3. (Optional) Click Apply same permissions as existing User , and then select a user from the dropdown. You can configure the permissions later.
  4. Enter the user's details.

    Username Type the username with no spaces.
    Full Name Type the user's first and last name.
    Email Type the user's email address.
    Phone Select the country code from the dropdown, and type the user's phone number.
    Description (Optional) Type a description of the user.

  5. (Optional) Add the user to an IAM user group. See IAM user groups.

    1. Click IAM User Group, and select a group from the dropdown. The Effect Asset Permissions and the Effective Portal Permissions are displayed.
    2. Click Next, and proceed to Step 10.
  6. From the Asset Permissions dropdown, select an asset folder. See Asset and portal permissions
  7. Configure the Portal Permissions.
    1. Click the Edit button in the portal row.
      Permission Description
      Allow Portal Access

      Toggle Yes to allow access to a portal.

      Access Type

      The Access Type is defined by the portal. For example, the access types for Asset Management are:

      • Admin

      • Read/Only

      • Read/Write

      Whereas the access types for FortiOS SSO are:

      • SuperAdmin

      • Read Only

      Additional Permission

      Additional permissions vary depending on the portal.

      Asset Management:

      • Recieve Renewal Notification

      FortiCare (Read Only or Read/Write)

      • Customer Serivce

      • Technical Assistance

      • RMA/DOA

      Note

      Some portals have user roles that are specific to that portal. When a portal has a unique user role, the Custom option is displayed. For information about the role, see the product's documentation.

    2. Click Confirm.
  8. Configure the Cloud Management & Services permissions.
    1. Click Add (+), then select a service from the list, and click ADD.
    2. Click the Edit button, and configure the portal permissions.
      Permission Description
      Allow Portal Access Toggle Yes to grant access to the service.
      AccessType

      The Access Type is defined by the portal. For example, the access types for Asset Management are:

      • Admin

      • Read/Only

      • Read/Write

      Whereas the access types for FortiOS SSO are:

      • SuperAdmin

      • Read Only

    3. Click Confirm.

  9. Click Next. The Confirmation page is displayed.
  10. Review the user information, and click Confirm. The user's details are displayed.

  11. Click Download CSV to download the new user's credentials.

Send the credentials to the user. New IAM users are required to perform a validation check the first time they log in to a portal. See Validating new IAM users.

After the user is created, send the login credentials to the user. New users are required to update their credentials when they log in to a portal.