With this feature, you can now assign FortiToken Cloud multi-factor authentication (MFA) in the GUI.
In the previous version of FortiOS, this was only possible in the CLI.
The GUI now supports provisioning FortiToken Cloud for Fortigate administrators and local firewall users. There is a new FortiToken Cloud icon in the System > Administrators GUI. You can assign FortiToken Cloud MFA to multiple users at the same time.
You must enable this feature first in the CLI:
config system global
set fortitoken-cloud-service enable
You may need to log out and log back in for the change to take effect.
- Go to System > Administrators. The list of administrators appears.
- Double-click on an administrator to edit the configuration (in this example, ftm-cloud).
- Click the toggle to enable Two-factor Authentication. There are two authentication types available: FortiToken (mobile) and FortiToken Cloud.
- Select FortiToken Cloud as the Authentication Type.
- Click OK.
In the administrators list under the Two-factor Authentication column, you can see the FortiToken Cloud icon for the administrator ftm-cloud.
- Go to User & Device > User Definition. The list of users appears.
Users must have valid email addresses in their configuration.
- Select all the users.
- Right-click on the selected users (in this example, test4 and test6).
- From the dropdown, select Assign Cloud Token.
A prompt appears to confirm the cloud token assignment.
- Click OK.
In the users list under the Two-factor Authentication column, you can see the FortiToken Cloud icon for the users test4 and test6.