Fortinet black logo

Administration Guide

Configuring end user accounts

Copy Link
Copy Doc ID 837a5488-6a0f-11ea-9384-00505692583a:277508
Download PDF

Configuring end user accounts

End users can browse the web through FortiIsolator as a guest or by logging into their user account. The administrator can create local user accounts or allow single sign-on for existing users in your organization. All user info is secured using a RADIUS database.

Creating local user accounts

Steps
  1. Open a browser window and navigate to the Administration Portal page
  2. Go to Users > User Definition > Create New
  3. Under Create New Local User, fill in the username and password fields and any optional fields as desired, then click OK.
    1. To place the user in an existing group, select the boxes for the groups you would like to assign the user to.
    2. To apply an existing policy to the user, select the policy name from the drop-down menu.
Tooltip

You can edit existing local user settings by going to Users > User Definition. Select the username and click Edit or double-click the username to edit.

Creating user groups

Local users can be placed into user groups. This allows you to apply policies to many local users at once rather than one by one individually.

Steps
  1. From the administration portal, go to Users > User Groups and click Create New.
  2. Type in a name for the group and click OK.
  3. To add a user to a group, go to Users > User Definition. Select the user you want to add to a group and click Edit.
  4. In the Groups section, select the box for the group you want to add the user to.

Setting up single sign-on for local users

Steps
  1. Open a browser window and navigate to the Administration Portal page.
  2. Go to Users > Server > Create New.
  3. Select Agent Server from the Server Type dropdown menu and click OK.
  4. Enter a unique ID number between 0 and 4. (You can create a maximum of 5 servers.)
  5. If you would like to enable single sign-on for this server now, check the Enable box. (You can always enable later by editing the server settings.)
  6. Enter the server IP address and LDAP listening port.
  7. Create a password and click OK.

Configuring end user accounts

End users can browse the web through FortiIsolator as a guest or by logging into their user account. The administrator can create local user accounts or allow single sign-on for existing users in your organization. All user info is secured using a RADIUS database.

Creating local user accounts

Steps
  1. Open a browser window and navigate to the Administration Portal page
  2. Go to Users > User Definition > Create New
  3. Under Create New Local User, fill in the username and password fields and any optional fields as desired, then click OK.
    1. To place the user in an existing group, select the boxes for the groups you would like to assign the user to.
    2. To apply an existing policy to the user, select the policy name from the drop-down menu.
Tooltip

You can edit existing local user settings by going to Users > User Definition. Select the username and click Edit or double-click the username to edit.

Creating user groups

Local users can be placed into user groups. This allows you to apply policies to many local users at once rather than one by one individually.

Steps
  1. From the administration portal, go to Users > User Groups and click Create New.
  2. Type in a name for the group and click OK.
  3. To add a user to a group, go to Users > User Definition. Select the user you want to add to a group and click Edit.
  4. In the Groups section, select the box for the group you want to add the user to.

Setting up single sign-on for local users

Steps
  1. Open a browser window and navigate to the Administration Portal page.
  2. Go to Users > Server > Create New.
  3. Select Agent Server from the Server Type dropdown menu and click OK.
  4. Enter a unique ID number between 0 and 4. (You can create a maximum of 5 servers.)
  5. If you would like to enable single sign-on for this server now, check the Enable box. (You can always enable later by editing the server settings.)
  6. Enter the server IP address and LDAP listening port.
  7. Create a password and click OK.