Feature comparison chart
Identity & Access Management introduces an enhanced user model for improved security, scalability, and management.
The following table compares the features in the legacy Sub-user based user model with the IAM user model.
Feature |
Sub User Model |
IAM User Model |
---|---|---|
Account Access Management | Add Sub users to the account | Add IAM Users to the account |
Permission Control |
Account level (Full Access/Limited Access) |
Fine grained permissions for each FortiCloud Service |
Asset Permissions | List of devices/Asset Groups (limited) | Asset folders with permissions hierarchy |
User Groups & Permissions | User group (limited) | User groups and group-level permissions |
Portal Access | No per portal control | Allow or Deny access per portal |
API User support | No | Granular permissions for each FortiCloud Service APIs |
User 2FA Management | No | Enforce (or exempt) 2FA for IAM users |