This section contains information about authenticating users and devices. All recipes and videos were made using FortiOS 5.4.

All authentication recipes

Local authentication

External authentication

VPN authentication

WiFi authentication

Leave a comment:

Before commenting, please read the site's comment policy. Only questions related to documentation will be answered. For other concerns, please contact Fortinet support.

  • Thomas Joyce

    I wish to list which users who have NOT used VPN in the last 60 days. If they’ve used it SSL or IPSEC

  • Oliver Saywell


    Do you have a cookbook for configuring the SSL VPN tunnel with LDAP authentication?


  • raja yadav

    how to desable multiple login and allow single user/group for 2/3 no. of login in firewall 500D

  • Anthony Thomas

    I have a site-to-site IPSec VPN with an active directory on one side.
    On the AD side, the Fortigate appliance can query the LDAP directory.
    On the other side, I can’t join the AD and as a consequence, I can’t query the LDAP.

    I use the LDAP for client-to-site VPN connection and would like to allow users to have the same authenfication on all sites.

    There is maybe a rule in the policy that needs to be added but the fortigate itself has no “interface” that can be used.

    Could you help me ?

    Thanks you very much for any help.