Examples and Troubleshooting Authentication

To configure LDAP for FSSO – CLI”

config user ldap edit “ADserver”

set server “”

set dn “cn=users,dc=office,dc=example,dc=com” set type regular

set username “cn=administrator,cn=users,dc=office,dc=example,dc=com” set password set_a_secure_password

next end


To specify the collector agent for FSSO – web-based manager

1. Go to User & Device > Authentication > Single Sign-On and select Create New.

2. Enter the following information:

Type                                            Fortinet Single Sign-On Agent

Name                                           WinGroups

Primary Agent IP/Name  

Password                                   fortinet_canada

LDAP Server                              ADserver

3. Select Apply & Refresh.

In a few minutes, the FortiGate unit downloads the list of user groups from the server.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.