Configuring third-party authentication with FortiToken Mobile


FortiToken Mobile lets you use FortiToken tokens for two-factor authentication, as well as third-party tokens used by Amazon, Dropbox, Google, and Microsoft. Two-factor authentication with FortiToken Mobile affords you the convenience and enhanced security of dynamically generated virtual passcodes.

In this recipe, you will enable Google’s 2-Step Verification and add the third-party token to FortiToken Mobile on your device. You will then be able to use the FortiToken Mobile third-party token to authenticate to your Google account, such as Gmail and YouTube.

You can download the latest FortiToken Mobile for Android on the Google Play store and for iOS on the iTunes app store.

Note: Fortinet does not maintain an exhaustive list of third-parties that are compatible with FortiToken Mobile as the list is growing continually. However, FortiToken Mobile is compatible with virtually any token that works with Google Authenticator. Popular accounts include (but are not limited to) Google, Facebook, Microsoft, Yahoo, Dropbox, Amazon, Snapchat, PayPal, eBay, and LastPass.

1. Configure Google 2-Step Verification on the browser

Open a browser and log in to your Google account at

Select Sign-in & security.

Under Signing in to Google, select 2-Step Verification (re-enter your password if necessary) and select Start setup.

Enter your phone number, select to have your code sent to you by Text message (SMS), and select Send code.

Shortly afterwards you will receive an SMS text message with a 6-digit verification code.


Enter the verification code in your browser and select Verify.


Elect to Trust this computer and select Next.

To confirm the 2-Step Verification set up, select Confirm.


You will be redirected to your Google 2-Step Verification page.

Select Switch to app.

Select your phone type (Android, iPhone, or Blackberry) and select Continue.

2. Add Google 2-Step Verification to FortiToken

Open FortiToken Mobile on your phone and enter your 4-digit PIN.

Select Add account.

Select Scan Barcode or Enter Manually.

If you choose to Enter Manually, make sure to select 3rd Party Accounts > Other. The account name will be the email address of the user.


Scan the barcode presented in the Google Authenticator set up window, or select Can’t scan the barcode? to view and enter the secret key into FortiToken Mobile manually.

FortiToken Mobile will begin producing Google authentication codes.

In the Google Authenticator set up window, enter the 6-digit code presented in FortiToken Mobile and select Verify and Save.

3. Results

When attempting to log in to a Google account (Gmail or YouTube for example), the user will be prompted to enter their verification code.

Enter the code displayed in FortiToken Mobile and select Done.

Fortinet Technical Documentation

Contact Fortinet Technical Documentation at
Fortinet Technical Documentation

Latest posts by Fortinet Technical Documentation (see all)