Fortinet white logo
Fortinet white logo

Identity & Access Management (IAM)

24.4.0

Portals with resource-based permission

Portals with resource-based permission

Resource-based permissions allow user permissions to be assigned by feature, instead of assigning permissions for the entire portal. The following FortiCloud portals use resource-based permissions to allow access:

Note

The permission details of other portals can be found in their respective product guides.

Asset Management

The Asset Management portal uses resource-based permissions to control access to various features and portal pages. See the Asset Management Guide for more information.

Resource

Description

Entitlement Management Provide control over entitlements, including entitlement (product, contract, license) registration, Pending Registration, and Marketplace features. The user can be granted Read Only, Read & Write, or No Access privileges.
Asset Maintenance Provide control over available assets, including license downloading, decommissioning, deregistration, TradeUp, transfer, and folder management. The user can be granted Read Only, Read & Write, or No Access privileges.
Renewal Notice

Provide the user with product renewal notifications. The user can be granted Read Only or No Access privileges.

Note

The user must have access to the root folder.

Vulnerability List Provide the user access to the product vulnerability list. The user can be granted Read Only or No Access privileges.
Account Services

Provide access to account-level products or services, including Account Services, FortiMeter, and the ELA Profile. The user can be granted Read Only, Read & Write, or No Access privileges.

IAM

The Identity & Access Management portal uses resource-based permissions to control access to their own account and the creation and management of other users.

Resource

Description

User/Permissions Provide control over users, user groups, permission profiles, and migrating sub users. The user can be granted Read Only, Read & Write, or No Access privileges.
Account Provide account management capabilities, including managing Account Settings. The user can be granted Read Only, Read & Write, or No Access privileges.
Credentials Provide control over account Security Credentials. The user can be granted Read Only, Read & Write, or No Access privileges.

FortiCare

The FortiCare portal uses resource-based permissions to control access to ticketing features. The FortiCare permissions can be assigned using the FortiCare New option.

Resource

Description

Customer Service Tickets Allow the user to create and track tickets pertaining to contracts and account management. The user can be granted Read Only, Read & Write, or No Access privileges.
Technical Support Tickets Allow the user to create and track tickets for technical issues. The user can be granted Read Only, Read & Write, or No Access privileges.
RMA Tickets Allow the user to create and track tickets pertaining to DOA and RMA assets. The user can be granted Read Only, Read & Write, or No Access privileges.

Advanced Service Requests

Allow the user to submit an Advanced Service request for professional assistance. The user can be granted Read Only, Read & Write, or No Access privileges.

Note

For the Advanced Services page to appear in the FortiCare portal, the user must have:

  • Read Only or Read & Write permissions

  • Access to the root folder in their permissions scope

  • A Premium Support entitlement

Incident Response Ticket

Allow the user to submit an Incident Response ticket for evaluation. The user can be granted Read Only, Read & Write, or No Access privileges.

Note

For the Incident Response page to appear in the FortiCare portal, the user must have:

  • Read Only or Read & Write permissions

  • Access to the root folder in their permissions scope

  • An Incident Retainer Service entitlement

Web Chat

Allow the user to join live web chats with Fortinet support. The user can be granted Read & Write or No Access privileges.

Survey Tickets

Allow the user to submit feedback in the ticket survey. The user can be granted Read & Write or No Access privileges.

Support Resources

Allow the user to view support resources, such as resource documents, Firmware downloads, and the customer support bulletin. Partners can also view the Bug Tracker. The user can be granted Read Only or No Access privileges.

Note

The FortiCare Legacy portal permissions can be assigned using the role-based FortiCare Legacy option.

Portals with resource-based permission

Portals with resource-based permission

Resource-based permissions allow user permissions to be assigned by feature, instead of assigning permissions for the entire portal. The following FortiCloud portals use resource-based permissions to allow access:

Note

The permission details of other portals can be found in their respective product guides.

Asset Management

The Asset Management portal uses resource-based permissions to control access to various features and portal pages. See the Asset Management Guide for more information.

Resource

Description

Entitlement Management Provide control over entitlements, including entitlement (product, contract, license) registration, Pending Registration, and Marketplace features. The user can be granted Read Only, Read & Write, or No Access privileges.
Asset Maintenance Provide control over available assets, including license downloading, decommissioning, deregistration, TradeUp, transfer, and folder management. The user can be granted Read Only, Read & Write, or No Access privileges.
Renewal Notice

Provide the user with product renewal notifications. The user can be granted Read Only or No Access privileges.

Note

The user must have access to the root folder.

Vulnerability List Provide the user access to the product vulnerability list. The user can be granted Read Only or No Access privileges.
Account Services

Provide access to account-level products or services, including Account Services, FortiMeter, and the ELA Profile. The user can be granted Read Only, Read & Write, or No Access privileges.

IAM

The Identity & Access Management portal uses resource-based permissions to control access to their own account and the creation and management of other users.

Resource

Description

User/Permissions Provide control over users, user groups, permission profiles, and migrating sub users. The user can be granted Read Only, Read & Write, or No Access privileges.
Account Provide account management capabilities, including managing Account Settings. The user can be granted Read Only, Read & Write, or No Access privileges.
Credentials Provide control over account Security Credentials. The user can be granted Read Only, Read & Write, or No Access privileges.

FortiCare

The FortiCare portal uses resource-based permissions to control access to ticketing features. The FortiCare permissions can be assigned using the FortiCare New option.

Resource

Description

Customer Service Tickets Allow the user to create and track tickets pertaining to contracts and account management. The user can be granted Read Only, Read & Write, or No Access privileges.
Technical Support Tickets Allow the user to create and track tickets for technical issues. The user can be granted Read Only, Read & Write, or No Access privileges.
RMA Tickets Allow the user to create and track tickets pertaining to DOA and RMA assets. The user can be granted Read Only, Read & Write, or No Access privileges.

Advanced Service Requests

Allow the user to submit an Advanced Service request for professional assistance. The user can be granted Read Only, Read & Write, or No Access privileges.

Note

For the Advanced Services page to appear in the FortiCare portal, the user must have:

  • Read Only or Read & Write permissions

  • Access to the root folder in their permissions scope

  • A Premium Support entitlement

Incident Response Ticket

Allow the user to submit an Incident Response ticket for evaluation. The user can be granted Read Only, Read & Write, or No Access privileges.

Note

For the Incident Response page to appear in the FortiCare portal, the user must have:

  • Read Only or Read & Write permissions

  • Access to the root folder in their permissions scope

  • An Incident Retainer Service entitlement

Web Chat

Allow the user to join live web chats with Fortinet support. The user can be granted Read & Write or No Access privileges.

Survey Tickets

Allow the user to submit feedback in the ticket survey. The user can be granted Read & Write or No Access privileges.

Support Resources

Allow the user to view support resources, such as resource documents, Firmware downloads, and the customer support bulletin. Partners can also view the Bug Tracker. The user can be granted Read Only or No Access privileges.

Note

The FortiCare Legacy portal permissions can be assigned using the role-based FortiCare Legacy option.