Help
FortiAuthenticator
FortiAuthenticator provides access management and single sign on.
dbu
Staff
Staff

Created on ‎10-03-2023 03:28 AM Edited on ‎11-20-2023 09:10 AM

Article Id 276846

Technical Tip: FortiAuthenticator self-register portal with Sponsor approval

Description This article describes how to configure a self-service portal with local and remote Sponsor groups.
Scope FortiAuthenticator v6.5.3, LDAP.
Solution

In this scenario, there are two groups of Sponsors, one locally defined on the FortiAuthenticator and another defined on the remote LDAP server. 

 

tempsnip3.PNG

 

Portal configuration.

 

To create a portal :

  • Go to Authentication -> Portals -> Portals, and select Create New.

 

Expand the Account Registration and make sure it is Enabled:

  • Enable and Require administrator approval.
  • Enable Select User Groups allowed to approve new user registrations.
  • Add the sponsor groups for approval.

 

tempsnip.png

 

Policies.

 

Configure the portal policy:

 

tempsnip1.png

 

tempsnip2.png

 

Portal Access.

 

The portal can be accessed on the URL mentioned on the policy:

https://fac.testlab.local/portal/selfservice/selfservicepolicy/

 

vip.PNG

 

Select the Sponsor drop-down menu to select the Sponsor for approval.

 

rdp.PNG

 

Note:

Make sure that Sponsor users have an email address configured, otherwise, will not be available from the drop-down menu.

 

366
0 Kudos
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.