-Section (upbeat music) In the Duo Admin Panel, add the Integration Key, Secret Key, and Api Hostname from your Fortigateapplications Properties page. Add the Radius_ip_1 parameter and your Fortigate VPN’s IP address. Add Theradius_secret_1 Parameter Below That And Enter A Secret

To Be Shared Between Your Vpn And The Proxy Finally, enter Ad_client in the Clientparameter. These six parameters are the bare minimum for configuring the proxy to work with your Fortigate VPN. The Documentation Describes Additional Optional Variables. Your Configuration File Should Be Saved Open a Command Prompt for Administrators

To start the proxy service, run Net Start Duoauthproxy. Configure your Fortigate VPN after that. To use the Fortigate administrative interface, you must first log in. Click User & Device in the left panel, then Radius Servers. To start a new project, click the Create New Button. Enter a name like Duo Radius in the Name Field on the New Radius Serverpage.

Enter the IP address, or Fqdn, of your Duo Radius Proxy in the Primary Server Ip/name field. Enter the Radius Secret configured on your Duo Radius Proxy in the Primary Server Secretfield. Select, Specify next to Authenticationmethod. Select Pap from the dropdown menu. Click the OK button. After that, create a user group. Click User & Device in the left panel and then User Groups. If you have an existing user group, you can edit its settings by clicking on it. If you don’t already have one, click Create New to create one. We’ll edit an existing user group in this example. Select Firewall from the drop-down menu next to Type on the User Groups page. To create a new remote group, go to the Remote Groups section and click Create New.

Remote Server Duo Radius It is not necessary to specify a group. To save the User Group and Settings, click Ok. Finally, set up the timer. The Fortinet Command Line Interface can be used to increase the timeout. We recommend that the timeout be increased to at least 60 seconds. Connect To Cli’s Appliance Go to System Global Configuration. Then go ahead and enter. Set Remoteauthtimeout to 60 minutes. Finally, press the Enter key. Test your setup after installing and configuring duo for your Fortigate VPN. In Duo, launch your Forticlientapplication with an enrolled username. You Will Receive An Automatic Push Or Phone Callback When You Enter Your Username And Password. This user has already signed up for Duo and activated the Duo mobile app on their phone, so they will receive a Duo push notification on their phone. Open the notification and double-check the contextual information.

If the login is valid, approve it, and you will be logged in. When using a passcode or manually selecting a two-factor authentication method, keep in mind that you can add a form factor to the end of your password.

More information can be found in the documentation. Duo For Your Fortigate Ssl Vpn Has Been Successfully Installed