The navigation menu provides access to features for adding and managing users and user groups.
Select the search icon in the top banner to perform a search for user information in the entire Identity & Access Management portal. Select the Search field in the page to perform a search within the current page.
The IAM Users page displays the list of users and the user's details including Username, Full Name, Email, Group, and Status. Use this page to add and delete users, or temporarily disable a user. Click the user's Full Name to edit their profile, update their permissions, and reset their password.
The IAM User Groups page displays a list of all the user groups in the portal. You can add users, disable a group, or delete a group directly from the page. Click a user group to view and edit the group's users and permissions. See Adding an IAM user group and Managing IAM user groups.
The API User page displays a list of all the API users in the portal. You can disable or delete a user directly from the page. Click the API User Id to update the user's status and portal permissions. See Managing API users.
The Add API User wizard guides you through the process of creating an API user and configuring their portal permissions. See Adding an API user.
The Migrate Sub User wizard guides you through the process of migrating a sub user from a FortiCloud account to the IAM portal. After the migration is complete, the sub user account is converted to an IAM user. You cannot revert a sub user after the process is complete. See Migrating sub users.
IdP roles is a limited beta feature. New enrollment requests are not available at this time.
The Manage External IdP Roles page displays a list of all External IdP user roles. IdP External roles allow users to log in to a FortiCloud portal using their organization's user account credentials with a third-party ID provider. Users with the proper permissions can create external roles in the IAM portal. External users with multiple IdP roles are required to select a role when they log in to a cloud portal. See Adding external IdP roles.