Two-Factor Auth with FortiToken Mobile

Video Activity

In this video, you will use FortiToken Mobile to add two-factor authentication to a user account. Two-factor authentication requires users to enter an additional piece of information after their username and password is accepted. In this case, you'll use a one-time password generated by the FortiToken app. This example uses FortiToken Mobile for iO...

Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or

Already have an account? Sign In »

Time
1 hour 35 minutes
Difficulty
Beginner
CEU/CPE
2
Video Description

In this video, you will use FortiToken Mobile to add two-factor authentication to a user account. Two-factor authentication requires users to enter an additional piece of information after their username and password is accepted. In this case, you'll use a one-time password generated by the FortiToken app. This example uses FortiToken Mobile for iOS. Visit Fortinet's documentation library at http://docs.fortinet.com.

Video Transcription
00:00
>> In this video, you will use
00:00
FortiToken Mobile to add
00:00
two-factor authentication to a user account.
00:00
Two-factor authentication requires users to enter
00:00
an additional piece of information
00:00
after their username and password is accepted.
00:00
In this case, we'll use
00:00
a one-time password generated by the FortiToken app.
00:00
This example uses FortiToken Mobile for iOS.
00:00
Before you start, make sure that
00:00
your FortiGate is connected to the Internet.
00:00
Go to User & Device, FortiTokens.
00:00
Your FortiGate may have entries listed by default.
00:00
If so, you may use
00:00
these tokens and go on to the next step.
00:00
To add new FortiTokens, select "Create New".
00:00
Set type to Mobile Token
00:00
>> and enter your activation code.
00:00
>> After FortiGuard validates the code,
00:00
your FortiTokens will appear in
00:00
the list with status set to Available.
00:00
Go to User & Device, User,
00:00
User Definition and create a new local user.
00:00
In order to use FortiToken Mobile,
00:00
you must enter a mobile phone number
00:00
in the Contact Info section.
00:00
Select the appropriate country region
00:00
and enter a phone number.
00:00
In the Extra Info section,
00:00
enable two-factor authentication and
00:00
select an available token.
00:00
The user list shows the FortiToken in
00:00
the two-factor authentication column
00:00
for the new user account.
00:00
Go to User & Device, FortiTokens.
00:00
The FortiToken assigned to the user is now listed as
00:00
pending until the user activates the FortiToken.
00:00
If your FortiGate can send SMS messages,
00:00
go to User & Device, User,
00:00
User Definition and edit the new user account.
00:00
Select "Sand Activation Code" and send the code by SMS.
00:00
If your FortiGate cannot send
00:00
SMS messages, go to System,
00:00
Dashboard, Status and
00:00
enter the following into the CLI console.
00:00
The activation code will be shown in the output.
00:00
Give this code to the user.
00:00
Go to Policy & Objects, Policy,
00:00
IPv4 and edit the policy that
00:00
allows connections from
00:00
the internal network to the Internet.
00:00
Set Source Users to the new user account.
00:00
Using your iOS device,
00:00
download and install FortiToken Mobile.
00:00
Open the app and add a new account.
00:00
Select "Enter Manually".
00:00
Enter the activation code into for FortiToken Mobile.
00:00
FortiToken Mobile can now generate
00:00
a token for use with the FortiGate.
00:00
To make the app more secure,
00:00
you can also set a pin on the app.
00:00
Attempt to browse the Internet.
00:00
Now authentication page appears
00:00
requesting a username and password.
00:00
After you enter the username and password,
00:00
the page will request a FortiToken code.
00:00
Enter the code currently shown in
00:00
the FortiToken Mobile app.
00:00
Once the token is authenticated,
00:00
you can connect to the Internet.
00:00
Thank you for watching.
00:00
If you need further details,
00:00
you can visit docs.fortinet.com
00:00
to access our complete documentation library.
00:00
You can also check out our new Cookbook site at
00:00
cookbook.fortinet.com
00:00
to find more tutorials like this one.
Up Next