FortiGate Version 3.0 MR4 Administration Guide
144 01-30004-0203-20070102
Administrators System Admin
You can authenticate an administrator using a password stored on the FortiGate
unit or on a RADIUS server. Optionally, you can store all administrator accounts
on a RADIUS server, except for the default ‘admin’ account. RADIUS-based
accounts on the same RADIUS server share the same access profile.
Configuring RADIUS authentication for administrators
If you want to use a RADIUS server to authenticate administrators in your VDOM,
you must configure the authentication before you create the administrator
accounts. To do this you need to:
• configure the FortiGate unit to access the RADIUS server
• create a user group with the RADIUS server as its only member
The following procedures assume that there is a RADIUS server on your network
populated with the names and passwords of your administrators. For information
on how to set up a RADIUS server, see the documentation for your RADIUS
server.
To configure the FortiGate unit to access the RADIUS server
1 Go to User > RADIUS.
2 Select Create New.
3 Enter the following information:
4 Select OK.
To create the administrator user group
1 Go to User > User Group.
2 Select Create New.
3 In the Group Name field, type a name for the administrator group.
4 In the Available Users list, select the RADIUS server name.
5 Select the green right arrow to move the name to the Members list.
6 Select any protection profile.
7 Select OK.
Viewing the administrators list
Use the default ‘admin’ account, an account with the super_admin access profile,
or an administrator with Access Control Read Write to add new administrator
accounts and control their permission levels. Go to System > Admin >
Administrators.
Unless your administrator account has the super_admin access profile, the
Administrators list shows only the administrators for the current virtual domain.
Name A name for the RADIUS server. You use this name when you create the
user group.
Server Name/IP
The domain name or IP address of the RADIUS server.
Server Secret
The RADIUS server secret. The RADIUS server administrator
can provide this information.
To Next Page
Loading...
Need help?
General