Configuring multi-factor authentication for your internal operator account
As an internal operator, you can configure multi-factor authentication (MFA) for your account to add an extra layer of security when you log in to the FortiDLP Console. After your username and passphrase are submitted on the login page, you will be prompted to provide another form of authentication before you are granted access.
FortiDLP supports two methods of MFA: WebAuthn security keys (for example, a YubiKey) and an authenticator app (for example, Google Authenticator). Multiple WebAuthn security keys can be added, and any will be accepted as authentication. If you add an authenticator app and security key(s), you will be prompted for a security key by default, and there will be an option to use your authenticator app instead.
How to configure multi-factor authentication for your internal operator account
- In the FortiDLP Console, on the left-hand sidebar, click
. - Under General, select the Profile tab.
- Do at least one of the following:
- To add an authenticator app:
- Under Multi-factor authentication > Authenticator app, click Add authenticator app.
- Open your authenticator app and scan the QR code that is shown in FortiDLP.
- In FortiDLP, enter the 6-digit code that is shown in your authenticator app.
- Click Add.
- Under Multi-factor authentication > Authenticator app, click Add authenticator app.
- To add a security key:
- Under Multi-factor authentication > Security keys, click Add security key.
- In the Name field, enter a name for the key.
- Click Add.
- Follow the instructions in your browser, which may vary depending on the browser type, to add the key.
- Under Multi-factor authentication > Security keys, click Add security key.
- To add an authenticator app: