Skip to content Skip to navigation Skip to footer

Identity and Access Management (IAM) Products

Securely manage identity authentication & authorization policies to protect against security breaches.

FortiAuthenticator Product Demo
Identity and Access Management (IAM) Products banner background banner dots


Today’s enterprise identity environments are made up of various systems of record ranging from networking devices, servers, directory services, and cloud applications. Managing an identity that resides in these various systems can quickly grow into such a large administrative challenge that it negatively affects users, administrators, and application developers.

Additionally, many of today’s most damaging security breaches have been due to compromised user accounts and passwords exacerbated by users being provided with inappropriate levels of access. Securely and effectively managing identity authentication and authorization for all systems and applications is crucial to minimize security breaches.

Identity and Access Management Models and Specifications


Hardware Appliances

Total Users
4x GE RJ45 ports, 1x 1 TB HDD
Total Users
4x GE RJ45 ports, 2x 1 TB HDD
Total Users
4x GE RJ45 ports, 2x GE SFP, 2x 2 TB HDD
Total Users
4x GE RJ45 ports, 2x GE SFP, 2x 2 TB SAS Drive
Total Users
4x GE RJ45 ports, 2x GE SFP, 2x 2 TB SAS Drive

Please see the product page for more information on these and many more Product features. 


Virtual Machines

Base FortiAuthenticator-VM with 100 user license
License to add 100 users to base VM
License to add 1000 users to base VM
License to add 10000 users to base VM
License to add 100000 users to base VM


Two factor authentication application for mobile devices
Standard multi-form factor OATH compliant hardware token
Hardware USB token for X.509 PKI certificates

Please see the product page for more information on these and many more Product features.  

FortiAuthenticator offers an Amazon Web Services (AWS) BYOL (bring your own license) option.  Please see the AWS Marketplace listing for more information:




Our Customers Emphasize the Value of Fortinet IAM in Gartner Peer Insights Reviews

“Strengthen Of Security, Easy And Quick Access”

Infrastructure Engineer
Industry: Services
Role: Infrastructure and Operations
Firm Size: <500M - 1B USD

“The experience was good to manage to do that with ease, fortiauthenticator SSO, and user management. The fortunate Enterprise also has a CA super of $xxM.”

“Easy MFA Tool”

Sr. System Administrator
Industry: Services
Role: Applications
Firm Size:1B - 3B USD

“Its a very handy tool for multi factor. easy to install and easy to configure. integration with FortiGate appliance also very easy. after deploying fortitoken we have control over unknows users to login through VPN.”

“Strengthen Your Security”

Team Lead IT Infrastructure
Industry: Manufacturing
Role: Infrastructure and Operations
Firm Size: 50M - 250M USD

“Good price value and easy to implement into existing environment. Easy to use for end users. Help us to achieve our aims.”

“Multifactor Authentication For FortiGate Devices”

Head Of Engineering - Security System
Industry: Construction
Role: Infrastructure and Operations

"We are using Forti Authenticator for secure access of FortiGate devices. this is very good tool for the secure access. performance is also very good and it works stand alone and can be integrated with active directory. We can have control over user access and we can get the report through event and logs. it can work with all FortiGate enterprise firewall and support all Android and IOS platform."

“Good Solution For MFA And/Or SSO When In A Fortinet Environment”

Network And Security Manager
Industry: Communications
Role: Infrastructure and Operations
Firm Size: 50M - 250M USD

“We achieve to configure it easily with other Fortinet solution. The integration with "SAML compatible" on premise or cloud solutions is pretty easy. The main problem is when you want to integrate it with existing non radius or saml solutions.”

“All In One Authenticator For Forti Products”

Network And Security Engineer
Role: Security and Risk Management
Firm Size: 250M - 500M USD.

“The overall experience is very satisfying. It comes with both VM and appliance but we purchase appliance. There app size is small, it supports both IOS and Android. Also we are using authenticator for almost all fortigate firewall logins and on forticlient as well which help us to enhance security. It also integrates with AD and also have different mode of authentication.”

“Good User Identity(2FA) Management Tool”

Role: Product Management/Marketing
Firm Size: 250M-500M USD

“Fortitoken is very convenient for the 2FA and especially during the lockdown, the tool was very useful in accessing Office VPN at an ease."


Gartner Peer Insights reviews constitute the subjective opinions of individual end users based on their own experiences, and do not represent the views of Gartner or its affiliates.


FortiAuthenticator Ecosystem

FortiAuthenticator provides integration with many leading IT vendors as part of the Fortinet Security Fabric. Below is a list of current FortiAutheticator Alliance Partners:

Enhance security and productivity while minimizing the burden on IT

The increase in cloud-based applications and connected devices have changed the way we work. This has also expanded the attack surface, giving cybercriminals more opportunities for targeted attacks. To avoid breaches, organizations need to ensure the right users are accessing the right network resources using cloud identity and access management (cloud IAM).

Fortinet User Authentication provides you with the tools and capabilities for effective authentication, access, and identity management of users, devices, and guests or partners. You can federate identity to provide a great experience for your users through Fortinet's IAM solution. 

Flexible deployment options let you decide the best way to deploy the IAM solution, depending on your needs. Choose on-premises ready-to-use hardware, a virtual machine, managed cloud, or identity-as-a-service (IDaaS). Quickly integrate Fortinet IAM Products with existing authentication infrastructure such as active directory (AD) or LDAP, or with new services through cloud service providers. 


Get Better Security with Multi-Factor Authentication (MFA)

Get Better Security Access with Multi-Factor Authentication (MFA)

Providing secure access to applications, services, or software development hosted on-premises or in the cloud, while offering ease of use for end users, is a constant challenge.

You can make it much tougher for hackers to gain access to protected information through the use of additional credentials such as a one-time passcode (OTP). OTP is one component of MFA. MFA is a crucial security feature of any IAM solution because it requires verification of multiple credentials:

  • Something the user knows: a username and password.
  • Something the user has: an OTP in the form of a token or code. This is sent to the user via email or SMS, to a hardware token generator, or to an authenticator application installed on the user’s smartphone.
  • Something specific to the user: biometric information such as the user’s finger print.

Therefore, even if a cybercriminal has a username and password, they cannot access the system without the other information.

Fortinet MFA, which is a crucial security feature of any IAM solution, provides easy-to-use secure access to corporate VPNs, Wi-Fi, on-premises, or cloud-based apps. Users can quickly log on by responding to a push notification on their smart device during the authentication process.

Increase security and easier access with IAM Single Sign-On (SSO)

Increase Security While Providing Easier Access for Users with Single Sign-on (SSO)

Centrally managing user identities and their access to organizational resources is the most effective identity and access management (IAM) security practice. With the IAM centralized solution, IT admins can enforce password complexity requirements and multi-factor authentication. Plus, Fortinet IAM delivers a better user experience when accessing services and applications in the cloud or on-premises.

Single sign-on (SSO) technology is a key component of the IAM Product that enables users to securely authenticate with multiple applications and websites by logging in only once. However, not all SSO solutions are built equally. Some providers offer an SSO solution for web-based applications, while others leverage public cloud infrastructure. Still, other SSO solutions are designed for on-premises services including applications, file storage, servers, and networks. Solely adopting a web-based application SSO solution is inefficient for effective identity security because cloud infrastructure and on-premises services will have different SSO requirements. As a result, managing (and federating) identities will largely remain decentralized and would require integration efforts across different SSO solutions to provide true SSO capability.

Fortinet FortiAuthenticator provides a comprehensive approach to SSO with centralized identity management. It authenticates users with traditional on-premises as well as modern web and cloud authentication protocols. Organizations gain full control. You can securely connect your users to appropriate resources in the cloud or on premises while improving their experience.


IAM Products Features and Benefits

Intuitive, centralized authentication and authorization services

Ensure the right people get appropriate access to your data, resources, and applications

Multi-factor authentication and management

Increase certainty of user identity with the verification of another factor

Single sign-on (SSO) for web/cloud applications and network resources

Fortinet SS0 (FSSO) including modern authentication protocols federating identity for SSO (SAML, OAuth, OIDC, and API support)

Guest, BYOD, and certificate management

Customizable portals including self-service capabilities

Simple deployment and licensing

Flexible deployment modes (appliances, VMs, cloud) with non-recurring or renewal licensing options

Integration with secure directories

Leverage existing identity systems of record on-premises or in the cloud

IAM Product Details

Fortinet IAM products provide the services necessary to securely confirm the identities of users and devices as they enter the network. With our robust identity access management solution, you can control and manage identity to securely allow the right users to only the appropriate resources.

The Fortinet IAM solution includes the following products:

  • FortiAuthenticator protects against unauthorized access to corporate resources by providing centralized authentication services for the Fortinet Security Fabric, including single sign-on services, certificate management, and guest access management.
  • FortiToken further confirms the identity of individual users by adding a second factor to the authentication process through physical or mobile-application tokens.
  • FortiTrust Identity provides all the capabilities that are part of FortitAuthenticator and FortiToken in a SaaS based, subscription offering.
  • FortiToken Cloud offers multi-factor authentication (MFA) as a service. Organizations can use its intuitive dashboard to manage MFA.
  • FortiGuest allows network administrators to quickly and easily provide wired and wireless guest access.  It also enables role and policy management, plus reporting throughout the BYOD life-cycle.

The combination of FortiAuthenticator and FortiToken or FortiToken Cloud effectively addresses the identity and access management challenges organizations face in this era of rapidly increasing user and device connectivity.

Identity and Access Management News

5/09/2018: FortiAuthenticator Release Notes: FortiAuthenticator announces the availability of it latest software release 5.3. Offering improvements to guest and web portal services along with feature enhancements 5.3 cements FortiAuthenticators position as the gatekeeper of the Fortinet Security Fabric.