Fortinet FortiGate Series Administration Guide

Fortinet FortiGate Series

764 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Page #277 background image

Loading...

Page #277 background image

System Admin Administrators

FortiGate Version 4.0 MR1 Administration Guide

01-410-89802-20090903 277

http://docs.fortinet.com/ • Feedback

5 Select OK.

Configuring TACACS+ authentication for administrators

Terminal Access Controller Access-Control System (TACACS+) is a remote

authentication protocol that provides access control for routers, network access servers,

and other networked computing devices via one or more centralized servers.

If you have configured TACACS+ support and an administrator is required to authenticate

using a TACACS+ server, the FortiGate unit contacts the TACACS+ server for

authentication. If the TACACS+ server cannot authenticate the administrator, the

connection is refused by the FortiGate unit.

If you want to use an TACACS+ server to authenticate administrators in your VDOM, you

must configure the authentication before you create the administrator accounts. To do this

you need to:

• configure the TACACS+ server

• configure the FortiGate unit to access the TACACS+ server

• create a user group with the TACACS+ server as a member.

To view the TACACS+ server list, go to User > Remote > TACACS+.

Figure 125: Example TACACS+ server list

To configure the FortiGate unit to access the TACACS+ server

1 Go to User > Remote > TACACS+.

2 Select Create New, or select the Edit icon beside an existing TACACS+ server.

3 Enter the Name that identifies the TACACS+ server.

4 For Server Name/IP, enter the server domain name or IP address of the TACACS+

server.

5 For Server Key, enter the key to access the TACACS+ server. The maximum number

is 16.

6 For Authentication Type, enter one of Auto, ASCII, PAP, CHAP, and MSCHAP. Auto

authenticates using PAP, MSCHAP, and CHAP (in that order).

7 Select OK.

Create New Add a new TACACS+ server.

Server The server domain name or IP address of the TACACS+ server.

Authentication Type The supported authentication method. TACACS+ authentication

methods include: Auto, ASCII, PAP, CHAP, and MSCHAP.

Delete icon Delete this TACACS+ server

Edit icon Edit this TACACS+ server.

Delete

Edit

Table of Contents

Other manuals for Fortinet FortiGate Series

Quick Start Guide14 pages

Install Guide51 pages

Questions and Answers:

Need help?

Do you have a question about the Fortinet FortiGate Series and is the answer not in the manual?

Fortinet FortiGate Series Specifications

General

Model	FortiGate Series
Category	Firewall
Throughput	Varies by model
Interfaces	Varies by model
Concurrent Sessions	Varies by model
VPN Support	Yes
High Availability	Yes
Firewall Throughput	Varies by model
VPN Throughput	Varies by model
IPS Throughput	Varies by model
NGFW Throughput	Varies by model
Threat Protection Throughput	Varies by model
New Sessions per Second	Varies by model
Power Supply	Varies by model
Security Features	Firewall, IPS, Application Control, Web Filtering, Antivirus, VPN
Virtual Domains	Yes
Form Factor	Desktop, Rackmount

Related product manuals

Preview: Fortinet FortiGate

Fortinet FortiGate

Preview: Fortinet FortiGate 60M

Fortinet FortiGate 60M

Preview: Fortinet FortiGate 70D

Fortinet FortiGate 70D

Preview: Fortinet FortiGate-80C

Fortinet FortiGate-80C

Preview: Fortinet FortiGate 1000D

Fortinet FortiGate 1000D

Preview: Fortinet FortiGate FortiGate-50

Fortinet FortiGate FortiGate-50

Preview: Fortinet FortiGate FortiGate-60

Fortinet FortiGate FortiGate-60

Fortinet FortiGate 1000F Series

Fortinet FortiGate FortiGate-500

Preview: Fortinet FortiGate FortiGate-800

Fortinet FortiGate FortiGate-800

Fortinet FortiGate FortiGate-100

Preview: Fortinet FortiGate FortiGate-50B

Fortinet FortiGate FortiGate-50B