Help
FortiAuthenticator
FortiAuthenticator provides access management and single sign on.
pksubramanian
Staff
Staff

Created on ‎09-03-2019 02:33 AM Edited on ‎11-26-2021 04:37 AM By Community Manager

Article Id 192436

Technical Tip: Enabling Two Factor PUSH Authentication on FortiAuthenticator

Description

This article describes how to enable PUSH Authentication instead of entering the token code manually.


Solution

1) The interface that receives the approve/deny FTM push responses must have the FortiToken Mobile API service enabled.

 

matanaskovic_0-1637272354279.png

 

 

2) Enter the network public IP address under System -> Administration -> System Access -> Public IP/FQDN for FortiToken Mobile:

matanaskovic_1-1637272354298.png

 

 

FortiAuthenticator only listens on port 443. NOTE: If the FortiAuthenticator interface is configured with a Private IP then it may be needed to NAT the Public->Private for that IP.

 

3) Make sure to enable through RADIUS policy in the Authentication factors > Advanced options > Allow FortiToken Mobile push notifications.

 

matanaskovic_2-1637272354308.png

 

 

Related Article:

https://docs.fortinet.com/document/fortiauthenticator/6.4.0/cookbook/125367/configure-two-factor-aut...

1000
0 Kudos
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.