To configure LDAP for FSSO – CLI”
config user ldap edit “ADserver”
set server “10.11.101.160”
set dn “cn=users,dc=office,dc=example,dc=com” set type regular
set username “cn=administrator,cn=users,dc=office,dc=example,dc=com” set password set_a_secure_password
next end
To specify the collector agent for FSSO – web-based manager
1. Go to User & Device > Authentication > Single Sign-On and select Create New.
2. Enter the following information:
Type Fortinet Single Sign-On Agent
Name WinGroups
Primary Agent IP/Name 10.11.101.160
Password fortinet_canada
LDAP Server ADserver
3. Select Apply & Refresh.
In a few minutes, the FortiGate unit downloads the list of user groups from the server.
Having trouble configuring your Fortinet hardware or have some questions you need answered? Check Out The Fortinet Guru Youtube Channel! Want someone else to deal with it for you? Get some consulting from Fortinet GURU!