Other security considerations
Other security consideration for restricting access to the FortiManager Web-based Manager include the following:
• Configure administrator accounts using a complex passphrase for local accounts
• Configure administrator accounts using RADIUS, LDAP, TACACS+, or PKI
• Configure the admin profile to only allow read-write access as required and restrict access using read-only or no access to settings which are not applicable to that administrator
• Configure the administrator account to only allow access to specific ADOMs as required
• Configure the administrator account to only allow access to specific policy packages as required.