Name: Fortinet FortiGate Series
Brand: Fortinet
Rating: 4 (1 reviews)

To Next Page

To Previous Page

User User Group

FortiGate Version 4.0 MR1 Administration Guide

01-410-89802-20090903 669

http://docs.fortinet.com/ • Feedback

An SSL VPN user group can also provide access to an IPSec VPN for dialup users. In this

case, the IPSec VPN phase 1 configuration uses the Accept peer ID in dialup group peer

option. You configure the user’s VPN client with the user name as peer ID and the

password as pre-shared key. The user can connect successfully to the IPSec VPN only if

the user name is a member of the allowed user group and the password matches the one

stored on the FortiGate unit. For more information about configuring user groups for IPSec

VPN, see “Creating a new phase 1 configuration” on page 614.

For information on configuring user groups, see “Configuring a user group” on page 669.

For information on configuring SSL VPN user group options, see “Configuring SSL VPN

identity-based firewall policies” on page 400.

Viewing the User group list

To view the User group list, go to User > User Group.

Figure 415: Example User group list

Configuring a user group

To add a new user group, go to User > User Group, select Create New, and enter or select

the following according to user group type:

Note: A user group cannot be an IPSec dialup group if any member is authenticated using

a RADIUS or LDAP server.

Create New Add a new user group.

Group Name The name of the user group. User group names are listed by type of

user group: Firewall, Directory Service and SSL VPN. For more

information,

see “Firewall user groups” on page 667, “Directory

Service user groups” on page 668, and “SSL VPN user groups” on

page 668.

Members The Local users, RADIUS servers, LDAP servers, TACACS+ servers,

Directory Service users/user groups or PKI users found in the user

group.

Delete icon Delete the user group.

You cannot delete a user group that is included in a firewall policy, a

dialup user phase 1 configuration, or a PPTP or L2TP configuration.

Edit icon Edit the membership and options of the group.

Expand Arrow

Delete

Edit

Note: By default, the FortiGate web-based manager displays Firewall options. The

following figures show the variations that display for each of the user group types: Firewall,

Directory Service, and SSL VPN.

Fortinet FortiGate Series Administration Guide

Table of Contents

Other manuals for Fortinet FortiGate Series

Questions and Answers:

Fortinet FortiGate Series Specifications

Related product manuals

Brand	Fortinet
Model	FortiGate Series
Category	Firewall
Language	English