Creating peer users – Fortinet FortiGate v3.0 MR7 User Manual

FortiOS v3.0 MR7 User Authentication User Guide

36

01-30007-0347-20080828

Users/peers

Users/peers and user groups

config user local

edit

set type ldap

set ldap_server

end

or

config user local

edit

set type radius

set radius_server

end

or

config user local

edit

set type tacacs+

set tacacs+_server

end

To remove a user from the FortiGate unit configuration - web-based
manager

1

Go to User > Local.

2

Select the Delete icon beside the name of the user that you want to remove.

3

Select OK.

Figure 14: Remove a Local user

To remove a user from the FortiGate unit configuration - CLI

config user local

delete

end

Creating peer users

A peer user is a digital certificate holder that can use PKI authentication. To use
PKI authentication, you must define peers to include in the authentication user
group that is incorporated in the authentication policy. Peer users can be included
in a firewall or SSL VPN user group.

To define a peer user you need:

Note: You cannot remove a user that belongs to a user group that is part of a firewall policy.
Remove it from the user group first.

Delete icon