Active Directory Servers; Understanding Your Active Directory Server; Configuring The Fortigate Unit To Use An Active Directory Server - Fortinet FortiGate User Manual
User authentication
Hide thumbs
Also See for FortiGate:
- Installation manual (77 pages) ,
- Quick start manual (28 pages) ,
- Quick start manual (2 pages)
Table of Contents
Advertisement
Authentication servers
1
2
3
Active Directory servers
Understanding your Active Directory server
Configuring the FortiGate unit to use an Active Directory server
1
2
3
4
5
6
7
8
FortiGate User Authentication Version 1 Guide
01-28007-0233-20050825
To remove an LDAP server from the FortiGate unit configuration
You cannot remove an LDAP server that belongs to a user group. Remove it from
the user group first.
Go to User > LDAP.
Select Delete beside the LDAP server name that you want to remove.
Select OK.
To remove an LDAP server from the FortiGate unit configuration - CLI
config user ldap
delete <name>
end
Active Directory server stores information about network objects, such as users,
systems and services, on Microsoft Windows networks. It first became available in
Windows 2000 Server.
Active Directory server organizes information hierarchically, similar to an LDAP
server. Although it accepts LDAP queries, the Active Directory server native form
of query is simpler. It does not require a common name identifier or a
distinguished name. For each object there is a shortcut to the distinguished name
called the User Principal Name (UPN). The UPN looks similar to an email
address. It consists of a short name like a user ID, followed by an "@" symbol,
followed by the server domain name: auser@example.com, for example. The
user enters this as the user name at the authentication prompt.
You can configure the FortiGate unit to access the Active Directory server using
either distinguished name or UPN.
To configure the FortiGate unit for Active Directory server authentication
Go to User > LDAP.
Select Create New to add a new LDAP server, or select the Edit icon to edit an
existing configuration.
Enter a name for the Active Directory server.
Enter the domain name or IP address of the Active Directory server.
Enter the port used to communicate with the Active Directory server.
Enter the common name identifier. If you want users to authenticate by UPN,
leave this field blank.
Enter the distinguished name used to look up entries on the server. If you want
users to authenticate by UPN, leave this field blank.
Select OK.
Active Directory servers
13
- Quick Links:
- Introduction
Hide quick links:
Advertisement
Table of Contents
