Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Administration Guide

    Home FortiPortal 7.2.4 Administration Guide
    7.2.4
    7.4.1
    7.4.0
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.0.15
    6.0.14
    6.0.13
    6.0.12
    6.0.11
    6.0.10
    6.0.9
    6.0.8
    6.0.7
    6.0.6
    6.0.5
    6.0.4
    6.0.3
    6.0.2
    6.0.1
    6.0.0
    5.3.8
    5.3.7
    5.3.6
    5.3.5
    5.3.4
    5.3.3
    5.3.2
    5.3.0
    5.2.0
    4.1.0
    4.0.3
    4.0.2
    4.0.1
    4.0.0

    Authentication

    Authentication

    To configure authentication settings:

    1. Go to System > Settings > Authentication.

    2. Configure the settings as follows:

      Field

      Required

      Description

      Authentication Access

      N

      Set to Local or Remote. After changing this setting, you must log in again.

      The following remote authentication options are available:

      By default, Authentication Access is set as Local.

      If FortiPortal is operating as a scalable cluster, the system will restart when you change the authentication configuration from local to remote or from remote to local.

      See Authentication access.

      Enable Two-factor Authentication

      N

      Enable or disable two-factor authentication (2FA) for local or remote users.

      FortiPortal only supports using the FortiToken Mobile application as the 2FA method. SMS and email are not supported.

      Caution

      2FA authentication depends on proper configuration of an SMTP server. See Email.

      For 2FA, a FortiToken license needs to be applied and registered in the same account where the FortiPortal license is registered.

      Email information is mandatory for 2FA users.

      If the user name is the email and no Tenant Identification Attribute is set, the domain part of the email can be used for tenant identification.

      See Two-factor authentication in FortiPortal example.

    3. Click Save.

    Previous
    Next

    Authentication

    Authentication

    To configure authentication settings:

    1. Go to System > Settings > Authentication.

    2. Configure the settings as follows:

      Field

      Required

      Description

      Authentication Access

      N

      Set to Local or Remote. After changing this setting, you must log in again.

      The following remote authentication options are available:

      By default, Authentication Access is set as Local.

      If FortiPortal is operating as a scalable cluster, the system will restart when you change the authentication configuration from local to remote or from remote to local.

      See Authentication access.

      Enable Two-factor Authentication

      N

      Enable or disable two-factor authentication (2FA) for local or remote users.

      FortiPortal only supports using the FortiToken Mobile application as the 2FA method. SMS and email are not supported.

      Caution

      2FA authentication depends on proper configuration of an SMTP server. See Email.

      For 2FA, a FortiToken license needs to be applied and registered in the same account where the FortiPortal license is registered.

      Email information is mandatory for 2FA users.

      If the user name is the email and no Tenant Identification Attribute is set, the domain part of the email can be used for tenant identification.

      See Two-factor authentication in FortiPortal example.

    3. Click Save.

    Previous
    Next