config authentication rule
Configure Authentication Rules.
config authentication rule
Description: Configure Authentication Rules.
edit <name>
set status [enable|disable]
set protocol [http|ftp|...]
set srcaddr <name1>, <name2>, ...
set srcaddr6 <name1>, <name2>, ...
set ip-based [enable|disable]
set active-auth-method {string}
set sso-auth-method {string}
set web-auth-cookie [enable|disable]
set transaction-based [enable|disable]
set web-portal [enable|disable]
set comments {var-string}
next
end
config authentication rule
Parameter name |
Description |
Type |
Size |
||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
status |
Enable/disable this authentication rule. |
option |
- |
||||||||||
|
|
||||||||||||
protocol |
Select the protocol to use for authentication (default = http). Users connect to the FortiGate using this protocol and are asked to authenticate. |
option |
- |
||||||||||
|
|
||||||||||||
srcaddr |
Select an IPv4 source address from available options. Required for web proxy authentication. Address name. |
string |
Maximum length: 79 |
||||||||||
srcaddr6 |
Select an IPv6 source address. Required for web proxy authentication. Address name. |
string |
Maximum length: 79 |
||||||||||
ip-based |
Enable/disable IP-based authentication. Once a user authenticates all traffic from the IP address the user authenticated from is allowed. |
option |
- |
||||||||||
|
|
||||||||||||
active-auth-method |
Select an active authentication method. |
string |
Maximum length: 35 |
||||||||||
sso-auth-method |
Select a single-sign on (SSO) authentication method. |
string |
Maximum length: 35 |
||||||||||
web-auth-cookie |
Enable/disable Web authentication cookies (default = disable). |
option |
- |
||||||||||
|
|
||||||||||||
transaction-based |
Enable/disable transaction based authentication (default = disable). |
option |
- |
||||||||||
|
|
||||||||||||
web-portal |
Enable/disable web portal for proxy transparent policy (default = enable). |
option |
- |
||||||||||
|
|
||||||||||||
comments |
Comment. |
var-string |
Maximum length: 1023 |