Fortinet black logo

Admin Guide

Home FortiToken Cloud Admin Guide

Hardware Tokens

Copy Link
Copy Doc ID 0a6c5280-a080-11ee-8673-fa163e15d75b:506312
Download PDF

Hardware Tokens

The term "hardware" refers to FortiToken (FTK) which is the only hardware token that FTC currently supports. The Hardware page shows all FortiTokens used by end-users in your account. It also offers tools for adding and deleting FTKs.

You can access the Hardware page by clicking Tokens > Hardware on the main menu. The following table describes the information on the Hardware page.

Column Description
Checkbox

If checked, the corresponding hardware token becomes selected and the Delete button enabled. You can then click the button to delete that hard token. For more information, see Delete hard tokens.

Note: You can also check the checkbox in the column header to select all the hard tokens and delete them all at once.
Serial Number The serial number of the hardware token.

Model

The model of the hardware token, which can be one of the following:

  • FTK200
  • FTK220
  • Other

Algorithm

The algorithm of time-based one-time password authentication used by the hardware token.

  • TOTP (default)
Username

The username of the FTC user to whom a FortiToken has been assigned.

Note: If this field is blank, it means that the FortiToken has not been assigned to any user yet.

Last Update

The date and time of the most recent update of the hard token.

The Import Tokens button enables you to add hard tokens to your account. You can either manually add serial numbers of hard tokens one by one or batch-upload them by importing a .csv file which contains the serial numbers of the hard tokens you want to add to your account. See Batch-upload hard tokens.

Caution

FortiToken Cloud only supports FTK200 and FTK220 hardware tokens. The FTK200CD (with the serial number prefix FTK211) is NOT supported.

Add hard tokens manually

Note

If FTK is set as the default MFA method in the settings of a realm, you can select users on the Users page and let FTC automatically assign FTKs to them by clicking the Auto-assign FTK button. See Users.
To add hard tokens manually:
  1. On the Tokens > Hardware page, click the Import Tokens button.

    The Import Hard Tokens dialog opens.

  2. Enter the serial number of the hard token.
  3. Click the Add New Token button.
  4. Repeat Steps 2 through 3 above to add as many hard tokens as you have available.
  5. Click OK.

    The Import Hard Token dialog closes, and a message pops up in the upper-right corner of the Hardware page, informing you how many hard tokens have been successfully added and how many have failed (if any) to be added. You can either click OK to dismiss the message, or wait for a few seconds to let it automatically close itself. The serial numbers of the hard tokens that are successfully added now appear on the Hardware page.

Batch-upload hard tokens

You can also batch-upload all the hard tokens you want to add at once if you have access to a .csv file that contains the serial numbers of the hard tokens to be added.

Note

Be sure to have the .csv file ready before starting the following procedures.
To batch-upload hard tokens:
  1. On the Tokens > Hardware page, click the Import Tokens button.

    The Import Hard Tokens dialog opens.

  2. In the upper-right corner of the dialog, click the Upload CSV file button.

    The typical Windows File Upload dialog opens.

  3. Locate the .csv file in your file system, and click Open.

    The Windows Upload File dialog closes, and all the serial numbers of the hard tokens in the .csv file are now added to the Import Hard Tokens dialog.

  4. Click OK.

    The Import Hard Token dialog closes, and a message pops up in the upper-right corner of the Hardware page, informing you how many hard tokens have been successfully added and how many have failed (if any) to be added. You can either click OK to dismiss the message, or wait for it to automatically close itself in a few seconds. The serial numbers of the hard tokens that are successfully added now appear on the Hardware page.

Assign a hard token to a user

A hard token shown on the Hardware page without a username means that it has not been assigned to any end-user yet, and can be assigned to any end-user in your FTC account.

To assign a free hard token to a user:
  1. On the main menu, click Users.

    The Users page opens. See Users.

  2. Identify the user of interest and click the MFA Method column.

    A pop-up list appears showing all the MFA methods that FTC supports.

  3. Select FTK.

Delete hard tokens

The Hardware page provides tools to delete hard tokens that are no longer needed. You can delete one, multiple, or all the hard tokens at once.

Caution

Only unassigned FTK tokens can be deleted.
To delete individual hard tokens:
  1. Identify the hard token(s).
  2. Select the corresponding checkbox(es).
  3. Click the Delete button.

    The Delete Hard Tokens warning message appears.

  4. Click Yes.
To delete all hard tokens:
  1. Select the checkbox in the header of the checkbox column.
  2. Click the Delete Hard Tokens button.

    The Delete Hard Tokens warning message appears.

  3. Click Yes.
Previous
Next

Hardware Tokens

The term "hardware" refers to FortiToken (FTK) which is the only hardware token that FTC currently supports. The Hardware page shows all FortiTokens used by end-users in your account. It also offers tools for adding and deleting FTKs.

You can access the Hardware page by clicking Tokens > Hardware on the main menu. The following table describes the information on the Hardware page.

Column Description
Checkbox

If checked, the corresponding hardware token becomes selected and the Delete button enabled. You can then click the button to delete that hard token. For more information, see Delete hard tokens.

Note: You can also check the checkbox in the column header to select all the hard tokens and delete them all at once.
Serial Number The serial number of the hardware token.

Model

The model of the hardware token, which can be one of the following:

  • FTK200
  • FTK220
  • Other

Algorithm

The algorithm of time-based one-time password authentication used by the hardware token.

  • TOTP (default)
Username

The username of the FTC user to whom a FortiToken has been assigned.

Note: If this field is blank, it means that the FortiToken has not been assigned to any user yet.

Last Update

The date and time of the most recent update of the hard token.

The Import Tokens button enables you to add hard tokens to your account. You can either manually add serial numbers of hard tokens one by one or batch-upload them by importing a .csv file which contains the serial numbers of the hard tokens you want to add to your account. See Batch-upload hard tokens.

Caution

FortiToken Cloud only supports FTK200 and FTK220 hardware tokens. The FTK200CD (with the serial number prefix FTK211) is NOT supported.

Add hard tokens manually

Note

If FTK is set as the default MFA method in the settings of a realm, you can select users on the Users page and let FTC automatically assign FTKs to them by clicking the Auto-assign FTK button. See Users.
To add hard tokens manually:
  1. On the Tokens > Hardware page, click the Import Tokens button.

    The Import Hard Tokens dialog opens.

  2. Enter the serial number of the hard token.
  3. Click the Add New Token button.
  4. Repeat Steps 2 through 3 above to add as many hard tokens as you have available.
  5. Click OK.

    The Import Hard Token dialog closes, and a message pops up in the upper-right corner of the Hardware page, informing you how many hard tokens have been successfully added and how many have failed (if any) to be added. You can either click OK to dismiss the message, or wait for a few seconds to let it automatically close itself. The serial numbers of the hard tokens that are successfully added now appear on the Hardware page.

Batch-upload hard tokens

You can also batch-upload all the hard tokens you want to add at once if you have access to a .csv file that contains the serial numbers of the hard tokens to be added.

Note

Be sure to have the .csv file ready before starting the following procedures.
To batch-upload hard tokens:
  1. On the Tokens > Hardware page, click the Import Tokens button.

    The Import Hard Tokens dialog opens.

  2. In the upper-right corner of the dialog, click the Upload CSV file button.

    The typical Windows File Upload dialog opens.

  3. Locate the .csv file in your file system, and click Open.

    The Windows Upload File dialog closes, and all the serial numbers of the hard tokens in the .csv file are now added to the Import Hard Tokens dialog.

  4. Click OK.

    The Import Hard Token dialog closes, and a message pops up in the upper-right corner of the Hardware page, informing you how many hard tokens have been successfully added and how many have failed (if any) to be added. You can either click OK to dismiss the message, or wait for it to automatically close itself in a few seconds. The serial numbers of the hard tokens that are successfully added now appear on the Hardware page.

Assign a hard token to a user

A hard token shown on the Hardware page without a username means that it has not been assigned to any end-user yet, and can be assigned to any end-user in your FTC account.

To assign a free hard token to a user:
  1. On the main menu, click Users.

    The Users page opens. See Users.

  2. Identify the user of interest and click the MFA Method column.

    A pop-up list appears showing all the MFA methods that FTC supports.

  3. Select FTK.

Delete hard tokens

The Hardware page provides tools to delete hard tokens that are no longer needed. You can delete one, multiple, or all the hard tokens at once.

Caution

Only unassigned FTK tokens can be deleted.
To delete individual hard tokens:
  1. Identify the hard token(s).
  2. Select the corresponding checkbox(es).
  3. Click the Delete button.

    The Delete Hard Tokens warning message appears.

  4. Click Yes.
To delete all hard tokens:
  1. Select the checkbox in the header of the checkbox column.
  2. Click the Delete Hard Tokens button.

    The Delete Hard Tokens warning message appears.

  3. Click Yes.
Previous
Next