Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • User Guide

    Home FortiPortal 7.0.8 User Guide
    7.0.8
    7.4.1
    7.4.0
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.0.15
    6.0.14
    6.0.13
    6.0.12
    6.0.11
    6.0.10
    6.0.9
    6.0.8
    6.0.7
    6.0.6
    6.0.5
    6.0.4
    6.0.3
    6.0.2
    6.0.1
    6.0.0
    5.3.8
    5.3.7
    5.3.6
    5.3.5
    5.3.4
    5.3.3
    5.3.2
    5.3.0
    5.2.0
    4.1.0

    Configuring a user

    Configuring a user

    To configure a user:
    1. Go to Security > Firewall Objects.
    2. Select User from the User & Device dropdown.
    3. Click Create or select an existing user from the list and click Edit..
    4. In the form, enter the following information:

      Settings

      Guidelines

      User Name

      Required. Enter a name for the user.

      Disable

      Enable to disable the user.

      Password

      Enter the password.

      Contact Information

      Email

      Enter the email address.

      Two-factor Authentication

      Select from the following:

    5. Click Save.
    FortiToken

    FortiToken is a one-time password (OTP) generator, available as a physical device or a mobile phone application. It generates a six-digit authentication code used together with a username and password for two-factor authentication.

    FortiTokens can be added to user accounts that are local, IPsec VPN, SSL VPN, and even Administrators.A FortiToken can be associated with only one account on one FortiPortal unit.

    If a FortiToken is lost, your account can be locked so that it will not be used to falsely access the network.

    Email based two-factor authentication

    Two-factor email authentication sends a randomly generated six digit numeric code to the specified email address. Enter that code when prompted at login. This token code is valid for 60 seconds. If you enter this code after that time, it will not be accepted.

    A benefit is that you do not require mobile service to authenticate. However, a potential issue is if your email server does not deliver the email before the 60 second life of the token expires.

    The code will be generated and emailed at the time of login, so you must have email access at that time to be able to receive the code.

    Previous
    Next

    Configuring a user

    Configuring a user

    To configure a user:
    1. Go to Security > Firewall Objects.
    2. Select User from the User & Device dropdown.
    3. Click Create or select an existing user from the list and click Edit..
    4. In the form, enter the following information:

      Settings

      Guidelines

      User Name

      Required. Enter a name for the user.

      Disable

      Enable to disable the user.

      Password

      Enter the password.

      Contact Information

      Email

      Enter the email address.

      Two-factor Authentication

      Select from the following:

    5. Click Save.
    FortiToken

    FortiToken is a one-time password (OTP) generator, available as a physical device or a mobile phone application. It generates a six-digit authentication code used together with a username and password for two-factor authentication.

    FortiTokens can be added to user accounts that are local, IPsec VPN, SSL VPN, and even Administrators.A FortiToken can be associated with only one account on one FortiPortal unit.

    If a FortiToken is lost, your account can be locked so that it will not be used to falsely access the network.

    Email based two-factor authentication

    Two-factor email authentication sends a randomly generated six digit numeric code to the specified email address. Enter that code when prompted at login. This token code is valid for 60 seconds. If you enter this code after that time, it will not be accepted.

    A benefit is that you do not require mobile service to authenticate. However, a potential issue is if your email server does not deliver the email before the 60 second life of the token expires.

    The code will be generated and emailed at the time of login, so you must have email access at that time to be able to receive the code.

    Previous
    Next