This section provides the configuration information on integrating Advanced Authentication with FortiGate. This integration secures the FortiGate connection.
The following diagram represents Advanced Authentication in FortiGate.
To configure the Advanced Authentication integration with FortiGate perform the following configuration tasks:
Ensure that the following requirements are met:
Fortinet virtual appliance v5 (Firmware version 5.2.5, build 8542 has been used to prepare these instructions) is installed.
Advanced Authentication v5 appliance is installed.
Open the Advanced Authentication Administration portal.
Move one or more chains fromto list. Ensure that the chains are assigned to the appropriate group of users in of the section.
Specify anof the FortiGate appliance.
Specify a secret and confirm it.
Sign-in to FortiGate configuration portal as.
Check whichis bound to the network interface.
Open the RADIUS Server configuration for an appropriateand setup the required settings.
Clickand specify the credentials of Advanced Authentication administrator to test the connection.
Create a user group and bind it to a remote authentication server.
Create user and place in the created group.
Specify the user’s credentials and click.
Specify the OTP and click.
NOTE:Thefield has a limitation of 16 digits. Therefore, you may face issues when using the YubiKey tokens with 18-20 digits code.