Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Portal Guide

    Home FortiMail Cloud Portal Guide

    Configuring administrator accounts

    Configuring administrator accounts

    During initial setup, at least one administrator account was created. More administrator accounts can be created later.

    You can grant permissions for each administrator to access a FortiMail Cloud tenant.

    1. If the new administrator does not have a FortiCloud account, log into Fortinet Technical Support. Create a sub-user or IAM user.

      Administrators use the same credentials to sign on with both the Fortinet Technical Support website and FortiMail Cloud.

    2. Log into FortiMail Cloud.

    3. In the row of the tenant that the new administrator will access, click the Hostname column.

    4. If you want to restrict other administrator accounts' permissions to specific features, go to System > Administrator > Admin Profile. Click New and define a permissions scope. For details, see the FortiMail Cloud Administration Guide.
    5. Go to System > Administrator > Cloud Administrator.
    6. Click New.

    7. Configure the following settings:

      GUI item

      Description

      Status

      Enable or disable the account. If disabled, the administrator account cannot access the FortiMail Cloud tenant.

      Administrator

      Enter the name for this administrator account.

      Note

      Match the username that is used to log into Fortinet Technical Support and FortiMail Cloud, which is either an email address or IAM username. Usernames are case sensitive.

      Access level

      Select the scope of the administrator account:

      • System
      • Domain
      • Domain Group (MSSP only)
      Note

      If Access level is Domain or Domain Group, the administrator cannot use the CLI.

      Domain

      Select the name of a protected domain.

      This setting is available only if Access level is Domain.

      Domain Group (MSSP only)

      Select the name of a group of protected domains.

      This setting is available only if Access level is Domain Group.

      Admin profile

      Select the name of an administrator profile that determines which functional areas the administrator account may view or affect.

      The default profile which allows full access to the FortiMail Cloud tenant is cloud_admin.

      Trusted hosts

      Enter an IPv4 or IPv6 address or subnet from which this administrator can log in. Use dotted decimal format. You can add up to 10 trusted hosts.

      For example, you might permit the administrator to log in to the FortiMail Cloud tenant from your office network only.

      If you want the administrator to be able to access the FortiMail Cloud tenant from any IP address, use 0.0.0.0/0.0.0.0.
    8. Click Create.
    Previous
    Next

    Configuring administrator accounts

    Configuring administrator accounts

    During initial setup, at least one administrator account was created. More administrator accounts can be created later.

    You can grant permissions for each administrator to access a FortiMail Cloud tenant.

    1. If the new administrator does not have a FortiCloud account, log into Fortinet Technical Support. Create a sub-user or IAM user.

      Administrators use the same credentials to sign on with both the Fortinet Technical Support website and FortiMail Cloud.

    2. Log into FortiMail Cloud.

    3. In the row of the tenant that the new administrator will access, click the Hostname column.

    4. If you want to restrict other administrator accounts' permissions to specific features, go to System > Administrator > Admin Profile. Click New and define a permissions scope. For details, see the FortiMail Cloud Administration Guide.
    5. Go to System > Administrator > Cloud Administrator.
    6. Click New.

    7. Configure the following settings:

      GUI item

      Description

      Status

      Enable or disable the account. If disabled, the administrator account cannot access the FortiMail Cloud tenant.

      Administrator

      Enter the name for this administrator account.

      Note

      Match the username that is used to log into Fortinet Technical Support and FortiMail Cloud, which is either an email address or IAM username. Usernames are case sensitive.

      Access level

      Select the scope of the administrator account:

      • System
      • Domain
      • Domain Group (MSSP only)
      Note

      If Access level is Domain or Domain Group, the administrator cannot use the CLI.

      Domain

      Select the name of a protected domain.

      This setting is available only if Access level is Domain.

      Domain Group (MSSP only)

      Select the name of a group of protected domains.

      This setting is available only if Access level is Domain Group.

      Admin profile

      Select the name of an administrator profile that determines which functional areas the administrator account may view or affect.

      The default profile which allows full access to the FortiMail Cloud tenant is cloud_admin.

      Trusted hosts

      Enter an IPv4 or IPv6 address or subnet from which this administrator can log in. Use dotted decimal format. You can add up to 10 trusted hosts.

      For example, you might permit the administrator to log in to the FortiMail Cloud tenant from your office network only.

      If you want the administrator to be able to access the FortiMail Cloud tenant from any IP address, use 0.0.0.0/0.0.0.0.
    8. Click Create.
    Previous
    Next