Fortinet black logo

Administration Guide

Configure a Active Directory (AD) user as FortiDeceptor administrator

Copy Link
Copy Doc ID 666526c9-6f4b-11ed-8e6d-fa163e15d75b:779873
Download PDF

Configure a Active Directory (AD) user as FortiDeceptor administrator

To configure an AD user as an administrator:
  1. Configure the LDAP Server in FortiDeceptor.
  2. Set the Active Directory user to be an administrator.

1. Configure the LDAP Server in FortiDeceptor

  1. On the Active Directory server, enable LDAP signing.
  2. Go to System > LDAP Servers and click Create New. The New LDAP Server page opens.
  3. Configure the LDAP settings as follows:

    NameEnter a unique name for the LDAP server.
    Server Name/IPEnter the FQDN IP or address of the AD server.

    Port

    Enter the connection port of the LDAP server.

    Common Name

    Enter the name of the user identifier field on the LDAP server. In this example, sAMAccountName.

    Distinguished Name

    Enter the LDAP node where the user account entries can be found. In this example, DC=fdc,DC=com.

    Bind Type

    Select the binding type:

    • Simple: Bind using a simple password authentication without a search.
    • Anonymous: Bind using anonymous user search.
    • Regular: Bind using username/password and then search.

    Use simple authentication if the user records all fall under one distinguished name (DN). If the users are under more than one DN, use the anonymous or regular type, which can search the entire LDAP database for the required username.

    If the LDAP server requires authentication to perform searches, use the regular type and provide the Username and Password.

    Username

    Enter the LDAP server domain username.

    Password

    Enter the LDAP server domain password.

    Enable Secure Connection

    Enable or disable secure connection to the LDAP server.

  4. Click OK.

2. Set the Active Directory user to be an administrator

  1. Go to System > Administrators and click Create New. The New Administrator page opens.
  2. Configure the administrator settings keeping the following considerations in mind:

    TypeSelect LDAP.
    LDAP ServerSelect the LDAP server you created in Step 1.

  3. Click OK.
  4. (Optional)To test the user credentials, select the user you created, and click Test Login.

    Enter the password and click OK.

    Use the Active Directory user account you created to log in to FortiDeceptor.

Configure a Active Directory (AD) user as FortiDeceptor administrator

To configure an AD user as an administrator:
  1. Configure the LDAP Server in FortiDeceptor.
  2. Set the Active Directory user to be an administrator.

1. Configure the LDAP Server in FortiDeceptor

  1. On the Active Directory server, enable LDAP signing.
  2. Go to System > LDAP Servers and click Create New. The New LDAP Server page opens.
  3. Configure the LDAP settings as follows:

    NameEnter a unique name for the LDAP server.
    Server Name/IPEnter the FQDN IP or address of the AD server.

    Port

    Enter the connection port of the LDAP server.

    Common Name

    Enter the name of the user identifier field on the LDAP server. In this example, sAMAccountName.

    Distinguished Name

    Enter the LDAP node where the user account entries can be found. In this example, DC=fdc,DC=com.

    Bind Type

    Select the binding type:

    • Simple: Bind using a simple password authentication without a search.
    • Anonymous: Bind using anonymous user search.
    • Regular: Bind using username/password and then search.

    Use simple authentication if the user records all fall under one distinguished name (DN). If the users are under more than one DN, use the anonymous or regular type, which can search the entire LDAP database for the required username.

    If the LDAP server requires authentication to perform searches, use the regular type and provide the Username and Password.

    Username

    Enter the LDAP server domain username.

    Password

    Enter the LDAP server domain password.

    Enable Secure Connection

    Enable or disable secure connection to the LDAP server.

  4. Click OK.

2. Set the Active Directory user to be an administrator

  1. Go to System > Administrators and click Create New. The New Administrator page opens.
  2. Configure the administrator settings keeping the following considerations in mind:

    TypeSelect LDAP.
    LDAP ServerSelect the LDAP server you created in Step 1.

  3. Click OK.
  4. (Optional)To test the user credentials, select the user you created, and click Test Login.

    Enter the password and click OK.

    Use the Active Directory user account you created to log in to FortiDeceptor.