Fortinet FortiGate v3.0 MR7 User Manual
Page 38
FortiOS v3.0 MR7 User Authentication User Guide
38
01-30007-0347-20080828
Users/peers
Users/peers and user groups
To create a peer user for PKI authentication - CLI
config user peer
edit
set subject
set ca
end
To remove a PKI peer user from the FortiGate unit configuration - web-based
manager
1
Go to User > PKI.
2
Select the Delete icon beside the name of the PKI peer user that you want to
remove.
3
Select OK.
Figure 17: Remove PKI peer user
To remove a PKI peer user from the FortiGate unit configuration - CLI
config user peer
delete
end
There are other configuration settings that can be added/modified for PKI
authentication, for example, you can configure the use of an LDAP server to
check access rights for client certificates. For information about the detailed PKI
configuration settings only available through the CLI, see the
Delete icon
Delete this PKI peer user. Note: The delete icon is not available if
the peer user belongs to a user group.
Edit icon
Edit this PKI peer user.
Note: You cannot remove a peer user that belongs to a user group that is part of a firewall
policy. Remove it from the user group first.