Configuring authentication for a firewall policy – Fortinet FortiGate v3.0 MR7 User Manual
Page 49
Configuring authenticated access
Firewall policy authentication
FortiOS v3.0 MR7 User Authentication User Guide
01-30007-0347-20080828
49
The style of the authentication method varies by the authentication protocol. If you
have selected HTTP, FTP or Telnet, user name and password-based
authentication occurs: the FortiGate unit prompts network users to input their
firewall user name and password. If you have selected HTTPS, certificate-based
authentication (HTTPS or HTTP redirected to HTTPS only) occurs: you must
install customized certificates on the FortiGate unit and on the browsers of
network users, which the FortiGate unit matches.
Configuring authentication for a firewall policy
Authentication is an Advanced firewall option.
Figure 23: Advanced Firewall policy options
To configure authentication for a firewall policy
1
Create users and one or more Firewall user groups.
You must select Type: Firewall for the user group. For more information, see
“Users/peers and user groups” on page 33
2
Go to Firewall > Policy.
3
Select Create New (to create a new policy) or select the Edit icon (to edit an
existing policy).
4
From the Action list, select ACCEPT.
5
Configure the other firewall policy parameters as appropriate.
For information about firewall policies, see the Firewall chapter of th
ortiGate
Administration Guide
.
6
Select Authentication.
Note: You can only configure user authentication for firewall policies where Action is set to
Accept.