Creating user accounts
You need to create user accounts and then add these users to a firewall user group to be used for L2TP authentication. The Microsoft VPN client can automatically send the user’s Window network logon credentials. You might want to use these for their L2TP user name and password.
To create a user account - web-based manager
1. Go to User & Device > User > User Definition and select Create New.
2. Enter the User Name.
3. Do one of the following:
• Select Password and enter the user’s assigned password.
• Select Match user on LDAP server, Match user on RADIUS server, or Match user on TACACS+ server and select the authentication server from the list. The authentication server must be already configured on the FortiGate unit.
4. Select OK.
To create a user account - CLI
To create a user account called user1 with the password 123_user, enter:
config user local
edit user1
set type password
set passwd "123_user"
set status enable
end