Integrate Fortigate Firewall with Active Directory

Posted: July 18, 2018 in fortigate

I created 2 Organizational Units:

one for Service account-fortigate_LDAP,for searching Active Directory (service)

and one for AD group where all users who need to login to Fortigate will be put (fortigate)

 

0.png

 

User & Devices-LDAP Servers-Create New

 

1.png

Type Domain Controller IP,domain name Distinguished Name,service account username/password-Bind Type:regular

 

2.PNG

 

Now map AD group to Fortigate group:

User Groups-Create New

 

5.PNG

Click Add

 

1

 

Click on OU with our group-select it-righ click-Add Selected

 

10.PNG

 

11.PNG

Now Associate this Fortigate group to Administrator profile:

System-Administrators-Create New-Administrator

 

12.PNG

Select Match all users in remote server group-select profile and from drop-down select Fortigate user group we created earlier

1.png

 

In Admin Profiles section we can create new profiles

1.png

Now you should be able to login with Active Directory user credentials

 

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s