eDirectory Authentication | ||
Username | Enter a username that has access to the eDirectory, using LDAP format. | |
Password | Enter the password. | |
Listening port | Enter the TCP port on which Fortinet Single Sign On Agent listens for connections from FortiGate units. The default is 8000. You can change the port if necessary. | |
Refresh interval | Enter the interval in seconds between polls of the eDirectory server to check for new logons. The default is 30 seconds. | |
FortiGate Connection Authentication | ||
Require authenticated connection from FortiGate | Select to require the FortiGate unit to authenticate before connecting to the eDirectory Agent. | |
Password | Enter the password that FortiGate units must use to authenticate. The maximum password length is 16 characters. The default password is “FortinetCanada”. | |
User logon Info Search Method | Select how the eDirectory agent accesses user logon information: LDAP or Native (Novell API). LDAP is the default. If you select Native, you must also have the Novell Client installed on the PC. | |
Logging | ||
Log file size limit (MB) | Enter the maximum size for the log file in MB. | |
View Log | View the current log file. | |
Dump Session | List the currently logged-on users in the log file. This can be useful for troubleshooting. | |
Log level | Select Debug, Info, Warning or Error as the minimum severity level of message to log or select None to disable logging. | |
eDirectory Server List | If you specified an eDirectory server during installation, it appears in this list. | |
Add | Add an eDirectory server. See . | |
Delete | Delete the selected eDirectory server. | |
Edit | Modify the settings for the selected server. | |
Set Group Filters... | Select the user groups whose user logons will be reported to the FortiGate unit. This is used only if user groups are not selected on the FortiGate unit. |