Create a RADIUS logon procedure
- Login to the DualShield management console
- In the main menu, select “Authentication | Logon Procedure”
- Click the “Create” button on the toolbar
- Enter “Name” and select “RADIUS” as the Type
- Click “Save”
- Click the Context Menu icon of the newly created logon procedure, select “Logon Steps” and a new section will be added to the page;
- To add a logon step we need to click on the button then select the desired authentication methods, e.g. “Static Password” and "On Demand";
- Click “Save” to confirm the changes.
Create a RADIUS application
- In the main menu, select “Authentication | Applications”
- Click the “Create” button on the toolbar
- Enter “Name”
- Select “Realm”
- Select the logon procedure that was just created
- Click “Save”
- Click the context menu of the newly created application, select “Agent”
- Select the DualShield Radius server, e.g. ”Local Radius Server”
- Click “Save”
- Click the context menu of the newly created application, select “Self Test”
Register the Fortigate SSL VPN as a Radius client
- In the main menu, select “RADIUS | Clients”
- Click the button on the toolbar
- Select the application that was created in the previous steps
- Enter Fortigate's IP in the IP address
- Enter the Shared Secret which will be used in Fortigate's settings.
- Click “Save”