Fortinet black logo

Administration Guide

Home FortiProxy 7.2.0 Administration Guide
7.2.0
7.4.3
7.4.2
7.4.1
7.4.0
7.2.10
7.2.9
7.2.8
7.2.7
7.2.0
7.0.17
7.0.0
2.0.0
1.2.0
1.1.0
1.0.0

Create or edit a user group

Create or edit a user group

To create a user group:
  1. In the user group list, select Create New from the toolbar. The Create User Group window opens.

  2. Enter a name for the group in the Name field.
  3. Select the group type in the Type field, one of: Firewall, Fortinet Single Sign-On (FSSO), RADIUS Single-Sign-On (RSSO), or Guest.
  4. Enter the following information, depending on the group type selected:

    5. Firewall

    This type of group can be selected in any security policy that requires firewall authentication.

    Logic Type

    Select whether OR or AND logic is used for matching memberships of a user group.

    Members

    If you selected a Firewall user group, select users to add to the group from the drop-down list.

    Fortinet Single Sign-On (FSSO)

    This type of group can be selected in any security policy that requires FSSO authentication.

    Logic Type

    Select whether OR or AND logic is used for matching memberships of a user group.

    Members

    If you selected the FSSO user group, select users to add to the group from the drop-down list.

    RADIUS Single Sign-On (RSSO)

    This type of group can be selected in any security policy that requires RSSO authentication.

    RADIUS Attribute Value

    If you selected the RSSO user group, enter the RADIUS attribute value. This value matches the value from the RADIUS Accounting-Start attribute.

    Guest

    This type of group can be selected in any security policy that allows guest authentication.

    Batch Guest Account Creation

    If you selected the Guest user group, enable the creation of batches of guest accounts.

    When enabled, only the Maximum Accounts, Start Countdown, and Time options are available.

    User ID

    If you selected the Guest user group, select a user identifier option:

    • Email: The user identifier is emailed.

    • Auto Generated: The user identifier is generated automatically.

    • Specify: The user identifier must be specified.

    Maximum Accounts

    If you selected the Guest user group, enable Maximum Accounts to limit how many accounts exist and then enter the maximum number in the field.

    Require Name

    If you selected the Guest user group, enable Require Name to require names for guests.

    Require Email

    If you selected the Guest user group, enable Require Email to require email addresses for guests.

    Require SMS

    If you selected the Guest user group, enable Require SMS to require SMS contact information for guests.

    Password

    If you selected the Guest user group, enable Password to require passwords for guests and then select a password option:

    • Auto Generated: The password is generated automatically.

    • Specify: The password must be specified.

    Sponsor

    If you selected the Guest user group, enable Sponsor and select Required to make a sponsor a requirement for guests.

    Company

    If you selected the Guest user group, enable Company and select Required to make a company a requirement for guests.

    Start Countdown

    If you selected the Guest user group, select when the expiration countdown begins for the user group, either On account Creation or After first login.

    Time

    If you selected the Guest user group, select the expiration time for the user group in Days, Hours, Minutes, and Seconds.
  5. Click OK to create the new user group.
To edit a user group:
  1. Select the group you want to edit and then click Edit from the toolbar or double-click on the group in the table. The Edit User Group window opens.
  2. Edit the information as required and then click OK to apply your changes.
Previous
Next

Create or edit a user group

To create a user group:
  1. In the user group list, select Create New from the toolbar. The Create User Group window opens.

  2. Enter a name for the group in the Name field.
  3. Select the group type in the Type field, one of: Firewall, Fortinet Single Sign-On (FSSO), RADIUS Single-Sign-On (RSSO), or Guest.
  4. Enter the following information, depending on the group type selected:

    5. Firewall

    This type of group can be selected in any security policy that requires firewall authentication.

    Logic Type

    Select whether OR or AND logic is used for matching memberships of a user group.

    Members

    If you selected a Firewall user group, select users to add to the group from the drop-down list.

    Fortinet Single Sign-On (FSSO)

    This type of group can be selected in any security policy that requires FSSO authentication.

    Logic Type

    Select whether OR or AND logic is used for matching memberships of a user group.

    Members

    If you selected the FSSO user group, select users to add to the group from the drop-down list.

    RADIUS Single Sign-On (RSSO)

    This type of group can be selected in any security policy that requires RSSO authentication.

    RADIUS Attribute Value

    If you selected the RSSO user group, enter the RADIUS attribute value. This value matches the value from the RADIUS Accounting-Start attribute.

    Guest

    This type of group can be selected in any security policy that allows guest authentication.

    Batch Guest Account Creation

    If you selected the Guest user group, enable the creation of batches of guest accounts.

    When enabled, only the Maximum Accounts, Start Countdown, and Time options are available.

    User ID

    If you selected the Guest user group, select a user identifier option:

    • Email: The user identifier is emailed.

    • Auto Generated: The user identifier is generated automatically.

    • Specify: The user identifier must be specified.

    Maximum Accounts

    If you selected the Guest user group, enable Maximum Accounts to limit how many accounts exist and then enter the maximum number in the field.

    Require Name

    If you selected the Guest user group, enable Require Name to require names for guests.

    Require Email

    If you selected the Guest user group, enable Require Email to require email addresses for guests.

    Require SMS

    If you selected the Guest user group, enable Require SMS to require SMS contact information for guests.

    Password

    If you selected the Guest user group, enable Password to require passwords for guests and then select a password option:

    • Auto Generated: The password is generated automatically.

    • Specify: The password must be specified.

    Sponsor

    If you selected the Guest user group, enable Sponsor and select Required to make a sponsor a requirement for guests.

    Company

    If you selected the Guest user group, enable Company and select Required to make a company a requirement for guests.

    Start Countdown

    If you selected the Guest user group, select when the expiration countdown begins for the user group, either On account Creation or After first login.

    Time

    If you selected the Guest user group, select the expiration time for the user group in Days, Hours, Minutes, and Seconds.
  5. Click OK to create the new user group.
To edit a user group:
  1. Select the group you want to edit and then click Edit from the toolbar or double-click on the group in the table. The Edit User Group window opens.
  2. Edit the information as required and then click OK to apply your changes.
Previous
Next