Fortinet black logo

Administration Guide

Administrative accounts

Copy Link
Copy Doc ID 962fb21b-9bd3-11eb-b70b-00505692583a:701015
Download PDF

Administrative accounts

Administrative, or admin, accounts allow access to various aspects of the FortiSwitch configuration. The level of access is determined by the admin profile that is assigned to the admin account.

See Admin for the steps to create an admin profile.

TACACS+ is a remote authentication protocol that provides access control for routers, network access servers, and other network computing devices using one or more centralized servers. If you have configured TACACS+ support and an administrator is required to authenticate using a TACACS+ server, the FortiSwitch unit contacts the TACACS+ server for authentication.

Using the GUI:
  1. Go to System > Admin > Administrators and select Add Administrator.
  2. Give the administrator account an appropriate name.
  3. Select Remote for the administrator type.
  4. Select a user group for remote users.
  5. Enable Wildcard.
  6. Select an administrator profile.
  7. Select Add.
Using the CLI:

config system admin

edit tacuser

set remote-auth enable

set wildcard enable

set remote-group <group>

set accprofile <profile>

end

end

Administrative accounts

Administrative, or admin, accounts allow access to various aspects of the FortiSwitch configuration. The level of access is determined by the admin profile that is assigned to the admin account.

See Admin for the steps to create an admin profile.

TACACS+ is a remote authentication protocol that provides access control for routers, network access servers, and other network computing devices using one or more centralized servers. If you have configured TACACS+ support and an administrator is required to authenticate using a TACACS+ server, the FortiSwitch unit contacts the TACACS+ server for authentication.

Using the GUI:
  1. Go to System > Admin > Administrators and select Add Administrator.
  2. Give the administrator account an appropriate name.
  3. Select Remote for the administrator type.
  4. Select a user group for remote users.
  5. Enable Wildcard.
  6. Select an administrator profile.
  7. Select Add.
Using the CLI:

config system admin

edit tacuser

set remote-auth enable

set wildcard enable

set remote-group <group>

set accprofile <profile>

end

end