This example shows how to set up FortiAuthenticator to function as a RADIUS server to authenticate SSL VPN users using FortiToken Mobile Push two-factor authentication. With push notifications, you can easily accept or deny the authentication request.
This example includes the following activities:
- Creating a user account on the FortiAuthenticator.
- Assigning a FortiToken Mobile license to the user.
- Creating the RADIUS client (FortiGate) on the FortiAuthenticator.
- Enabling FortiToken Mobile Push notifications.
- Connect the FortiGate to the RADIUS server (FortiAuthenticator).
- Creating an SSL VPN on the FortiGate to allow internal access for remote users.
This example uses the following names and IP addresses:
- Username: gthreepwood
- User group: RemoteFTMGroup
- RADIUS server: OfficeRADIUS
- RADIUS client: OfficeServer
- SSL VPN user group: SSLVPNGroup
- FortiAuthenticator: 172.25.176.141
- FortiGate: 172.25.176.92
For this example, you must have already installed the FortiToken Mobile application on your smartphone. For details, see: