Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • CLI Reference

    Home FortiWeb 7.2.4 CLI Reference
    7.2.4
    7.6.1
    7.6.0
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.3.23
    6.3.19
    6.3.18
    6.3.17
    6.3.16
    6.3.15
    6.3.14
    6.3.13
    6.3.11
    6.3.10
    6.3.9
    6.3.7
    6.3.6
    6.3.5
    6.3.4
    6.3.3
    6.3.2
    6.3.1
    6.3.0
    6.2.6
    6.2.5
    6.2.4
    6.2.3
    6.2.2
    6.2.1
    6.2.0
    6.1.2
    6.1.1
    5.7.0
    5.6.1
    5.6.0

    waf site-publish-helper authentication-server-pool

    waf site-publish-helper authentication-server-pool

    Use this command to create a pool of authentication server connections for use with a site publishing rule.

    To use this command, your administrator account’s access control profile must have either w or rw permission to the sysgrp area. For details, see Permissions.

    Syntax

    config waf site-publish-helper authentication-server-pool

    edit "<authentication-server-pool_name>"

    edit <entry_index>

    set server-type {ldap | radius}

    set ldap-server "<ldap-query_name>"

    set radius-server "<radius-query_name>"

    set rsa-securid {enable | disable}

    end

    next

    end

    Variable Description Default

    "<authentication-server-pool_name>"

    Enter the name of a new or existing authentication server pool. The maximum length is 63 characters.

    To display the list of existing pools, enter:

    edit ?

    		No default.

    <entry_index>

    		 Enter the index number of a new or existing server entry in the authentication server pool. No default.

    server-type {ldap | radius}

    		 Set the server type to the server entry <entry_index>. Enter ldap for a LDAP server or radius for a RADIUS server. ldap

    ldap-server "<ldap-query_name>"

    		 Set the name of the LDAP query to the server entry <entry_index> if you set the server entry as LDAP. For details, see user ldap-user. No default.

    radius-server "<radius-query_name>"

    		 Set the name of the RADIUS query to the server entry <entry_index> if you set the server entry as RADIUS. For details, see user radius-user. No default.

    rsa-securid {enable | disable}

    Specify whether FortiWeb authenticates clients using a username and a RSA SecurID authentication code only. Users are not required to enter a password.

    When this option is enabled, the authentication delegation options in the site publish rule are not available.

    Available only if server-type {ldap | radius} is radius and client-auth-method {html-form-auth | HTTP-auth | client-cert-auth | saml-auth | ntlm-auth} is html-form-auth.

    		 disable

    Example

    For an example, see waf site-publish-helper rule.

    Related topics

    Previous
    Next

    waf site-publish-helper authentication-server-pool

    waf site-publish-helper authentication-server-pool

    Use this command to create a pool of authentication server connections for use with a site publishing rule.

    To use this command, your administrator account’s access control profile must have either w or rw permission to the sysgrp area. For details, see Permissions.

    Syntax

    config waf site-publish-helper authentication-server-pool

    edit "<authentication-server-pool_name>"

    edit <entry_index>

    set server-type {ldap | radius}

    set ldap-server "<ldap-query_name>"

    set radius-server "<radius-query_name>"

    set rsa-securid {enable | disable}

    end

    next

    end

    Variable Description Default

    "<authentication-server-pool_name>"

    Enter the name of a new or existing authentication server pool. The maximum length is 63 characters.

    To display the list of existing pools, enter:

    edit ?

    		No default.

    <entry_index>

    		 Enter the index number of a new or existing server entry in the authentication server pool. No default.

    server-type {ldap | radius}

    		 Set the server type to the server entry <entry_index>. Enter ldap for a LDAP server or radius for a RADIUS server. ldap

    ldap-server "<ldap-query_name>"

    		 Set the name of the LDAP query to the server entry <entry_index> if you set the server entry as LDAP. For details, see user ldap-user. No default.

    radius-server "<radius-query_name>"

    		 Set the name of the RADIUS query to the server entry <entry_index> if you set the server entry as RADIUS. For details, see user radius-user. No default.

    rsa-securid {enable | disable}

    Specify whether FortiWeb authenticates clients using a username and a RSA SecurID authentication code only. Users are not required to enter a password.

    When this option is enabled, the authentication delegation options in the site publish rule are not available.

    Available only if server-type {ldap | radius} is radius and client-auth-method {html-form-auth | HTTP-auth | client-cert-auth | saml-auth | ntlm-auth} is html-form-auth.

    		 disable

    Example

    For an example, see waf site-publish-helper rule.

    Related topics

    Previous
    Next