Users without FortiClient Endpoint Security - SSO widget
To log onto the network, the user accesses the organization’s web page with a web browser. Embedded on that page is a simple logon widget. The SSO widget sets a cookie on the user’s browser. When the user browses to a page containing the login widget, the FortiAuthenticator unit recognizes the user and updates its database if the user’s IP address has changed. The user will not need to re-authenticate until the login expires, which can take up to 30 days.