Configure local LDAP users for FTC service
Your can use the following commands to configure FortiGate local LDAP users to use FortiToken Cloud for MFA. In this case, verification of the LDAP user passwords verification is done through the LDAP server EngLDAP, but the other settings are the same as those of a regular local user.
config user local
edit "ldap-user1"
set type ldap
set two-factor fortitoken-cloud
set email-to "ldap-user1@fortinet.com"
set sms-phone "+14080123456"
set ldap-server “EngLDAP”
set passwd ENC EKhmlTBu1hmHUokESNTkNjxV8mBQ+AgyRPlInw==
next
end