Fortinet black logo

Identity & Access Management (IAM)

Logging in with 2FA for the first time

24.1.0
Copy Link
Copy Doc ID cb035e9b-aa60-11ee-8673-fa163e15d75b:702619
Download PDF

Logging in with 2FA for the first time

Users are required to validate and set up 2FA for the IAM user the first time they log in to https://support.fortinet.com.

Email users

Master and legacy sub users logging in with an email account will be forced to enable 2FA using FortiToken if it is being enforced at the account or OU level. See Enabling Two-Factor Authentication for information on enforcing 2FA at the account level. See Settings in the Organization Portal guide for information on enforcing 2FA at the Organization level.

Note

If it is not being enforced, you can choose to enable 2FA for your email account. See Enabling Two-Factor Authentication.

To set up 2FA for FortiToken if it is being enforced at the Organization or Account level:
  1. Log in using your email account credentials. You will be redirected to the Two-Factor Authentication page.

  2. Enable Activate 2FA with FortiToken Mobile App.

  3. Click Update. The Verify Identity dialog opens.

  4. Enter your account password and click Submit.
  5. (Optional) Click Test Token Now to verify 2FA has been enabled.
    1. Enter the security code and click Submit. A dialog opens if the test is successful.
  6. Log in using your email credentials again and use FortiToken to verify your account.

IAM users

Users logging in with an IAM account can set up 2FA for email or FortiToken.

To set up 2FA for FortiToken:
  1. On the Security Credentials > Two Factor Authentication page, select Edit.
  2. Enable Enable Two-Factor Authentication and click FortiToken.

  3. Click Update. The Your Current Password dialog opens.

  4. Enter your IAM user password and click Submit.
  5. (Optional) Click Test Token Now to verify 2FA has been enabled.
  6. Enter the security code and click Submit. A dialog opens if the test is successful.
  7. Log in using your IAM user credentials again and use FortiToken to verify your account.
To set up 2FA for email:
  1. On the Security Credentials > Two Factor Authentication page, select Edit.
  2. Enable Enable Two-Factor Authentication and click Email.

    Your IAM user account email will appear in the Notification Email field. This email address cannot be changed.

  3. Click Update. The Password Required dialog opens.

  4. Enter your password and click Confirm. If the authentication is successful a confirmation page appears.
  5. Log in to the portal again.

    The next time you log in to the portal you be prompted to enter a verification code.

Logging in with 2FA for the first time

Users are required to validate and set up 2FA for the IAM user the first time they log in to https://support.fortinet.com.

Email users

Master and legacy sub users logging in with an email account will be forced to enable 2FA using FortiToken if it is being enforced at the account or OU level. See Enabling Two-Factor Authentication for information on enforcing 2FA at the account level. See Settings in the Organization Portal guide for information on enforcing 2FA at the Organization level.

Note

If it is not being enforced, you can choose to enable 2FA for your email account. See Enabling Two-Factor Authentication.

To set up 2FA for FortiToken if it is being enforced at the Organization or Account level:
  1. Log in using your email account credentials. You will be redirected to the Two-Factor Authentication page.

  2. Enable Activate 2FA with FortiToken Mobile App.

  3. Click Update. The Verify Identity dialog opens.

  4. Enter your account password and click Submit.
  5. (Optional) Click Test Token Now to verify 2FA has been enabled.
    1. Enter the security code and click Submit. A dialog opens if the test is successful.
  6. Log in using your email credentials again and use FortiToken to verify your account.

IAM users

Users logging in with an IAM account can set up 2FA for email or FortiToken.

To set up 2FA for FortiToken:
  1. On the Security Credentials > Two Factor Authentication page, select Edit.
  2. Enable Enable Two-Factor Authentication and click FortiToken.

  3. Click Update. The Your Current Password dialog opens.

  4. Enter your IAM user password and click Submit.
  5. (Optional) Click Test Token Now to verify 2FA has been enabled.
  6. Enter the security code and click Submit. A dialog opens if the test is successful.
  7. Log in using your IAM user credentials again and use FortiToken to verify your account.
To set up 2FA for email:
  1. On the Security Credentials > Two Factor Authentication page, select Edit.
  2. Enable Enable Two-Factor Authentication and click Email.

    Your IAM user account email will appear in the Notification Email field. This email address cannot be changed.

  3. Click Update. The Password Required dialog opens.

  4. Enter your password and click Confirm. If the authentication is successful a confirmation page appears.
  5. Log in to the portal again.

    The next time you log in to the portal you be prompted to enter a verification code.