Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Administration Guide

    Home FortiDeceptor 5.2.0 Administration Guide
    5.2.0
    6.0.1
    6.0.0
    5.3.2
    5.3.1
    5.3.0
    5.2.0
    5.1.0
    5.0.0
    4.3.0
    4.2.0
    4.1.1
    4.1.0
    4.0.2
    4.0.1
    4.0.0
    3.3.3
    3.3.2
    3.3.1
    3.3.0
    3.2.2
    3.2.1
    3.2.0
    3.1.1
    3.1.0
    3.0.2
    3.0.1
    3.0.0
    2.1.0
    2.0.0
    1.1.0
    1.0.1

    Configure a Active Directory (AD) user as FortiDeceptor administrator

    Configure a Active Directory (AD) user as FortiDeceptor administrator

    To configure an AD user as an administrator:
    1. Configure the LDAP Server in FortiDeceptor.
    2. Set the Active Directory user to be an administrator.

    1. Configure the LDAP Server in FortiDeceptor

    1. On the Active Directory server, enable LDAP signing.
    2. Go to System > LDAP Servers and click Create New. The New LDAP Server page opens.
    3. Configure the LDAP settings as follows:

      NameEnter a unique name for the LDAP server.
      Server Name/IPEnter the FQDN IP or address of the AD server.

      Port

      Enter the connection port of the LDAP server.

      Common Name

      Enter the name of the user identifier field on the LDAP server. In this example, sAMAccountName.

      Distinguished Name

      Enter the LDAP node where the user account entries can be found. In this example, DC=fdc,DC=com.

      Bind Type

      Select the binding type:

      • Simple: Bind using a simple password authentication without a search.
      • Anonymous: Bind using anonymous user search.
      • Regular: Bind using username/password and then search.

      Use simple authentication if the user records all fall under one distinguished name (DN). If the users are under more than one DN, use the anonymous or regular type, which can search the entire LDAP database for the required username.

      If the LDAP server requires authentication to perform searches, use the regular type and provide the Username and Password.

      Username

      Enter the LDAP server domain username.

      Password

      Enter the LDAP server domain password.

      Enable Secure Connection

      Enable or disable secure connection to the LDAP server.

    4. Click OK.

    2. Set the Active Directory user to be an administrator

    1. Go to System > Administrators and click Create New. The New Administrator page opens.
    2. Configure the administrator settings keeping the following considerations in mind:

      TypeSelect LDAP.
      LDAP ServerSelect the LDAP server you created in Step 1.

    3. Click OK.
    4. (Optional)To test the user credentials, select the user you created, and click Test Login.

      Enter the password and click OK.

      Use the Active Directory user account you created to log in to FortiDeceptor.

    Previous
    Next

    Configure a Active Directory (AD) user as FortiDeceptor administrator

    Configure a Active Directory (AD) user as FortiDeceptor administrator

    To configure an AD user as an administrator:
    1. Configure the LDAP Server in FortiDeceptor.
    2. Set the Active Directory user to be an administrator.

    1. Configure the LDAP Server in FortiDeceptor

    1. On the Active Directory server, enable LDAP signing.
    2. Go to System > LDAP Servers and click Create New. The New LDAP Server page opens.
    3. Configure the LDAP settings as follows:

      NameEnter a unique name for the LDAP server.
      Server Name/IPEnter the FQDN IP or address of the AD server.

      Port

      Enter the connection port of the LDAP server.

      Common Name

      Enter the name of the user identifier field on the LDAP server. In this example, sAMAccountName.

      Distinguished Name

      Enter the LDAP node where the user account entries can be found. In this example, DC=fdc,DC=com.

      Bind Type

      Select the binding type:

      • Simple: Bind using a simple password authentication without a search.
      • Anonymous: Bind using anonymous user search.
      • Regular: Bind using username/password and then search.

      Use simple authentication if the user records all fall under one distinguished name (DN). If the users are under more than one DN, use the anonymous or regular type, which can search the entire LDAP database for the required username.

      If the LDAP server requires authentication to perform searches, use the regular type and provide the Username and Password.

      Username

      Enter the LDAP server domain username.

      Password

      Enter the LDAP server domain password.

      Enable Secure Connection

      Enable or disable secure connection to the LDAP server.

    4. Click OK.

    2. Set the Active Directory user to be an administrator

    1. Go to System > Administrators and click Create New. The New Administrator page opens.
    2. Configure the administrator settings keeping the following considerations in mind:

      TypeSelect LDAP.
      LDAP ServerSelect the LDAP server you created in Step 1.

    3. Click OK.
    4. (Optional)To test the user credentials, select the user you created, and click Test Login.

      Enter the password and click OK.

      Use the Active Directory user account you created to log in to FortiDeceptor.

    Previous
    Next