Fortinet Document Library

Version:

22.1.0

Table of Contents

Identity & Access Management (IAM)

22.1.0
22.1.0
Download PDF
Copy Link

Adding an IAM user group

Create a group of asset and portal permissions, and then assign users to the group.

To create an user group:
  1. Go to IAM User Groups. The IAM User Groups pane is displayed.

  2. Click ADD IAM USER GROUP. The Add IAM User Group pane is displayed.
  3. In the Group Name field, enter a name for the group.
  4. (Optional) In the Description field, describe the group.
  5. (Optional) Set the Status to Disabled. The status is Active by default.
  6. Click Next.
  7. From the Asset Permissions dropdown, select an asset group. See Asset and portal permissions.
  8. Configure the portal permissions.
    1. In the portal permissions table, click the Edit button in the portal row.
      Permission Description
      Allow Portal Access

      Toggle Yes to allow access to a portal.
      Access Type

      The Access Type is defined by the portal. For example, the access types for Asset Management are:

      • Admin

      • Read/Only

      • Read/Write

      Whereas the access types for FortiOS SSO are:

      • SuperAdmin

      • Read Only
      Additional Permission

      Additional permissions vary depending on the portal.

      Asset Management:

      • Recieve Renewal Notification

      FortiCare (Read Only or Read/Write)

      • Customer Serivce

      • Technical Assistance

      • RMA/DOA

      Note

      Some portals have user roles that are specific to that portal. When a portal has a unique user role, the Custom option is displayed. For information about the role, see the product's documentation.
    2. Click Confirm.
  9. Configure the Cloud Management & Services permissions.
    1. Click the plus sign (+).
    2. Select a service from the list, and click ADD.
    3. Click the Edit button, and configure the portal permissions.
      Permission Description
      Allow Portal Access Toggle Yes to grant access to the service.
      AccessType

      The Access Type is defined by the portal. For example, the access types for Asset Management are:

      • Admin

      • Read/Only

      • Read/Write

      Whereas the access types for FortiOS SSO are:

      • SuperAdmin

      • Read Only
    4. Click Confirm.
  10. Click Next. The Add IAM user(s) page is displayed.

  11. Assign users to the group.
    1. Click Add User.
    2. (Optional) Click Filter users by Group, to view users in a group. Selecting a user in a group will remove the user from that group.
    3. (Optional) Enter a username in the search bar, and enter the user name. As you type, partial results are returned.
    4. Select the users and click Add.
    5. Click Next.The Confirmation page is displayed.
  12. Review the group permissions, and click Confirm.

  13. (Optional) Click Add Another Group.

Adding an IAM user group

Create a group of asset and portal permissions, and then assign users to the group.

To create an user group:
  1. Go to IAM User Groups. The IAM User Groups pane is displayed.

  2. Click ADD IAM USER GROUP. The Add IAM User Group pane is displayed.
  3. In the Group Name field, enter a name for the group.
  4. (Optional) In the Description field, describe the group.
  5. (Optional) Set the Status to Disabled. The status is Active by default.
  6. Click Next.
  7. From the Asset Permissions dropdown, select an asset group. See Asset and portal permissions.
  8. Configure the portal permissions.
    1. In the portal permissions table, click the Edit button in the portal row.
      Permission Description
      Allow Portal Access

      Toggle Yes to allow access to a portal.
      Access Type

      The Access Type is defined by the portal. For example, the access types for Asset Management are:

      • Admin

      • Read/Only

      • Read/Write

      Whereas the access types for FortiOS SSO are:

      • SuperAdmin

      • Read Only
      Additional Permission

      Additional permissions vary depending on the portal.

      Asset Management:

      • Recieve Renewal Notification

      FortiCare (Read Only or Read/Write)

      • Customer Serivce

      • Technical Assistance

      • RMA/DOA

      Note

      Some portals have user roles that are specific to that portal. When a portal has a unique user role, the Custom option is displayed. For information about the role, see the product's documentation.
    2. Click Confirm.
  9. Configure the Cloud Management & Services permissions.
    1. Click the plus sign (+).
    2. Select a service from the list, and click ADD.
    3. Click the Edit button, and configure the portal permissions.
      Permission Description
      Allow Portal Access Toggle Yes to grant access to the service.
      AccessType

      The Access Type is defined by the portal. For example, the access types for Asset Management are:

      • Admin

      • Read/Only

      • Read/Write

      Whereas the access types for FortiOS SSO are:

      • SuperAdmin

      • Read Only
    4. Click Confirm.
  10. Click Next. The Add IAM user(s) page is displayed.

  11. Assign users to the group.
    1. Click Add User.
    2. (Optional) Click Filter users by Group, to view users in a group. Selecting a user in a group will remove the user from that group.
    3. (Optional) Enter a username in the search bar, and enter the user name. As you type, partial results are returned.
    4. Select the users and click Add.
    5. Click Next.The Confirmation page is displayed.
  12. Review the group permissions, and click Confirm.

  13. (Optional) Click Add Another Group.