Fortinet FORTIOS V3.0 MR7 User Manual
Page 40
FortiOS v3.0 MR7 SSL VPN User Guide
40
01-30007-0348-20080718
Configuring user accounts and SSL VPN user groups
Configuring a FortiGate SSL VPN
You can choose to use a plain text password for authentication through the
FortiGate unit (Local domain), forward authentication requests to an external
RADIUS or LDAP server, or utilize PKI certificate authentication. If password
protection will be provided through a RADIUS or LDAP server, you must configure
the FortiGate unit to forward authentication requests to the RADIUS or LDAP
server. In the case of certificate authentication, you must install the required
certificates.
The following procedures explain how to create a user account and user group in
the Local domain. For information about how to create RADIUS, LDAP or PKI
user accounts, refer to the “User” chapter of the
For information about certificate authentication, see the
To create a user account in the Local domain
1
Go to User > Local and select Create New.
2
Select OK.
3
Repeat this procedure for each remote user.
User Name
Type or edit the remote user name (for example,
User_1)
.
Disable
Select Disable to prevent this user from authenticating.
Password
Select Password to authenticate this user using a password stored on
the SSL VPN unit.
Type or edit the password to be associated with the user account. The
password should be at least six characters long.
LDAP
Select LDAP to authenticate this user using a password stored on an
LDAP server. Select the LDAP server from the drop-down list.
RADIUS
Select RADIUS to authenticate this user using a password stored on a
RADIUS server. Select the RADIUS server from the drop-down list.