Feature comparison chart
Identity & Access Management introduces an enhanced user model for improved security, scalability, and management.
The following table compares the features in the legacy Sub-user based user model with the IAM user model.
|
Feature |
Sub User Model |
IAM User Model |
|---|---|---|
| Account Access Management | Add Sub users to the account | Add IAM Users to the account |
|
Permission Control |
Account level (Full Access/Limited Access) |
Fine grained permissions for each FortiCloud Service |
| Asset Permissions | List of devices/Asset Groups (limited) | Asset folders with permissions hierarchy |
| User Groups & Permissions | User group (limited) | User groups and group-level permissions |
| Portal Access | No per portal control | Allow or Deny access per portal |
| API User support | No | Granular permissions for each FortiCloud Service APIs |
| User 2FA Management | No | Enforce (or exempt) 2FA for IAM users |
