Fortinet white logo
Fortinet white logo

Administration Guide

User definition

User definition

A user account consists of a user name, password, and potentially other information, configured in a local user database or on an external authentication server.

Users can access resources that require authentication only if they are members of an allowed user group.

Using the GUI:
  1. Go to System > User > Definition.
  2. Select Add User.
  3. Enter the user name.
  4. Select Enable to make the user account active.
  5. Enter the password for the user account. Passwords can be up to 64 characters in length.
  6. Select Add.
Using the CLI:

config user local

edit <user_name>

set ldap-server <server_name>

set passwd <password_string>

set radius-server <server_name>

set tacacs+-server <server_name>

set status {enable | disable}

set type <auth-type>

end

Field

Description

user_name

Identifies the user

password_string

A password for the local user. Passwords can be up to 64 characters in length.

ldap-server <server_name>

To authenticate this user using a password stored on a remote authentication server, select the type of server and then select the server from the list. You can select only a server that has already been added to the FortiSwitch configuration.

radius-server <server_name>

To authenticate this user using a password stored on a remote authentication server, select the type of server and then select the server from the list. You can select only a server that has already been added to the FortiSwitch configuration.

tacacs+-server <server_name>

To authenticate this user using a password stored on a remote authentication server, select the type of server and then select the server from the list. You can select only a server that has already been added to the FortiSwitch configuration.

status

Enable or disable this user.

User definition

User definition

A user account consists of a user name, password, and potentially other information, configured in a local user database or on an external authentication server.

Users can access resources that require authentication only if they are members of an allowed user group.

Using the GUI:
  1. Go to System > User > Definition.
  2. Select Add User.
  3. Enter the user name.
  4. Select Enable to make the user account active.
  5. Enter the password for the user account. Passwords can be up to 64 characters in length.
  6. Select Add.
Using the CLI:

config user local

edit <user_name>

set ldap-server <server_name>

set passwd <password_string>

set radius-server <server_name>

set tacacs+-server <server_name>

set status {enable | disable}

set type <auth-type>

end

Field

Description

user_name

Identifies the user

password_string

A password for the local user. Passwords can be up to 64 characters in length.

ldap-server <server_name>

To authenticate this user using a password stored on a remote authentication server, select the type of server and then select the server from the list. You can select only a server that has already been added to the FortiSwitch configuration.

radius-server <server_name>

To authenticate this user using a password stored on a remote authentication server, select the type of server and then select the server from the list. You can select only a server that has already been added to the FortiSwitch configuration.

tacacs+-server <server_name>

To authenticate this user using a password stored on a remote authentication server, select the type of server and then select the server from the list. You can select only a server that has already been added to the FortiSwitch configuration.

status

Enable or disable this user.