Fortinet Identity and Access Management


Fortinet Identity and Access Management

Fortinet Identity and Access Management Securely connect every identity to your resources and simplify management with enhanced user experience


Today’s business identity environments are made up of various systems of record ranging from networking devices, servers, directory services, and cloud applications. Managing an identity that resides in these various systems can quickly grow into such a large administrative challenge that it negatively affects users, administrators, and application developers.

Additionally, many of today’s most damaging security breaches have been due to compromised user accounts and passwords exacerbated by groups of users being provided with inappropriate levels of access. Securely and effectively managing identity authentication and authorization policies for all systems and applications is crucial to protect against security breaches.

Enhance security and productivity while minimizing the burden on IT

The increase in cloud-based applications and connected devices have changed the way we work. This has also expanded the attack surface, giving cybercriminals more opportunities for targeted attacks. To avoid breaches, organizations need to ensure the right users are accessing the right network resources using cloud identity and access management (cloud IAM).

Fortinet User Authentication provides you with the tools and capabilities for effective authentication, access, and identity management of users, devices, and guests or partners. You can federate identity to provide a great experience for your users.

Flexible deployment options let you decide the best way to deploy the solution, depending on your needs. Choose on-premises ready-to-use hardware, a virtual machine, managed cloud, or identity-as-a-service (IDaaS). Quickly integrate Fortinet IAM with existing authentication infrastructure such as active directory (AD) or LDAP, or with new services through cloud service providers.

Get Better Security Access with Multi-Factor Authentication (MFA)

Providing secure access to applications, services, or software development hosted on-premises or in the cloud, while offering ease of use for end users, is a constant challenge.

You can make it much tougher for hackers to gain access to protected information through the use of additional credentials such as a one-time passcode (OTP). OTP is one component of MFA. MFA is a crucial security feature of any IAM solution because it requires verification of multiple credentials:

  • Something the user knows: a username and password.
  • Something the user has: an OTP in the form of a token or code. This is sent to the user via email or SMS, to a hardware token generator, or to an authenticator application installed on the user’s smartphone.
  • Something specific to the user: biometric information such as the user’s finger print.

Therefore, even if a cybercriminal has a username and password, they cannot access the system without the other information.

  • Google Play
  • Apple App Store
  • Windows Store

Fortinet MFA provides easy-to-use secure access to corporate VPNs, Wi-Fi, on-premises, or cloud-based apps. Users can quickly log on by responding to a push notification on their smart device during the authentication process.

Increase Security While Providing Easier Access for Users with Single Sign-on (SSO)

Centrally managing user identities and their access to organizational resources is the most effective identity and access management (IAM) security practice. With the IAM centralized solution, IT admins can enforce password complexity requirements and multi-factor authentication. Plus, Fortinet IAM delivers a better user experience when accessing services and applications in the cloud or on premises.

Single sign-on (SSO) technology is a key component of IAM that enables users to securely authenticate with multiple applications and websites by logging in only once. However, not all SSO solutions are built equally. Some providers offer an SSO solution for web-based applications, while others leverage public cloud infrastructure. Still, other SSO solutions are designed for on-premises services including applications, file storage, servers, and networks. Solely adopting a web-based-application SSO solution is inefficient for effective identity security because cloud infrastructure and on-premises services will have different SSO requirements. As a result, managing (and federating) identities will largely remain decentralized and would require integration efforts across different SSO solutions to provide true SSO capability.

Fortinet FortiAuthenticator provides a comprehensive approach to SSO with centralized identity management. It authenticates users with traditional on-premises as well as modern web and cloud authentication protocols. Organizations gain full control. You can securely connect your users to appropriate resources in the cloud or on premises while improving their experience.

Features and Benefits


Ensure the right people get appropriate access to your data, resources, and applications


Increase certainty of user identity with the verification of another factor


Fortinet SS0 (FSSO) including modern authentication protocols federating identity for SSO (SAML, oAuth, OIDC, and API support)


Customizable portals including self-service capabilities


Flexible deployment modes (appliances, VMs, cloud) with non-recurring or renewal licensing options


Leverage existing identity systems of record on-premises or in the cloud


IAM Product Details

Fortinet IAM products provide the services necessary to securely confirm the identities of users and devices as they enter the network. With our robust identity access management solution, you can control and manage identity to securely allow the right users to only the appropriate resources.

The Fortinet IAM solution includes the following products:

  • FortiAuthenticator protects against unauthorized access to corporate resources by providing centralized authentication services for the Fortinet Security Fabric, including single sign-on services, certificate management, and guest access management.
  • FortiToken further confirms the identity of individual users by adding a second factor to the authentication process through physical or mobile-application tokens.
  • FortiToken Cloud offers multi-factor authentication (MFA) as a service. Organizations can use its intuitive dashboard to manage MFA.
    The combination of FortiAuthenticator and FortiToken or FortiToken Cloud effectively addresses the identity and access management challenges organizations face in this era of rapidly increasing user and device connectivity.


Fortinet Security

Fortinet Identity and Access Management