Problem Description This article describes how to enable users to re-provision their FortiToken Mobile or use temporary email or SMS tokens if the previously provisioned mobile device is lost or unavailable. Scope FortiAuthenticator, Self-Service portal, reprovisioning of Tokens. Solution It is possible to re-provision FortiToken to users in the event that an already provisioned mobile …
This article describes in detail how to renew password for users that is expired on AD using FortiGate and FortiAuthenticator. Scope FortiAuthenticator, FortiGate. Solution It is presumed that SSL-VPN authentication with FortiGate and FortiAuthenticator is working, for password renewal it is mandatory to use MSCHAPv2 on FortiGate and FortiAuthenticator. In order to renew the password, …
This article describes the steps to create FSSO connector and enable FSSO Encryption between FortiAuthenticator and FortiGate using certificates. Scope FortiAuthenticator and FortiGate Solution FortiAuthenticator uses TCP Port 8000 for FSSO communication with FortiGate. To check this, login to FortiAuthenticator > Fortinet SSO Methods > General. In FortiAuthenticator firmware 6.4.5 and 6.4.6, there is a …
This article describes the situation when FortiAuthenticator is unable to send SMS messages. The below message is appearing because the username is maybe too long: Unable to send FTM activation message to xxx. FortiGuard server failed sending SMS because message is too long. Solution Step 1: Go to System > Administration > Replacement Message. Step …
This article describes the issue where FSSO events are not collected by FortiGate after the upgrade of FortiAuthenticator to 6.4.5. Solution: Disable Enable encryption feature FortiAuthenticator now offers a server-side TLS support option so that FortiGate as an FSSO client can be configured to connect to FortiAuthenticator over a TLS connection, and this is enabled …
