Security Forem

Samuel Adeduntan
Samuel Adeduntan

Posted on

#DAY 7: Users & Authentication

#identitymanagement #userauthentication #accesscontrol #fortigatesecurity

Strengthening Security Through Identity Management

Introduction

True security necessitates limiting who has access to resources, even though firewall rules and security profiles regulate traffic at the network and application levels. FortiGate's user and authentication management makes sure that only people with permission may access the network and that their actions can be tracked and managed.

Granular identity-based access control is made possible by FortiGate through the creation of user accounts, the definition of user groups, and integration with external authentication servers like LDAP, RADIUS, or Active Directory. This method lowers the possibility of unwanted access to vital systems while simultaneously increasing accountability.

I set up users and authentication techniques during this step to improve firewall identity management. I made sure that security regulations were applied consistently by directly connecting access permissions to user identities, which improved network visibility and protection.

What is Users and authentication?

The processes and procedures used to confirm the identification of people gaining access to a system or network in order to guarantee that only authorized users are permitted entry are referred to as users and authentication.

By controlling access through identity verification, users and authentication help to increase security by making sure that only those with permission can access systems and resources.

Creating users & groups

User & Authentication

Image1

Image1

Login credential set up

Image1

Image1

Image1

New User Added
Image1

Requiring authentication in policies

How to enable the user/group on the
Image1firewall policy

Simulation

Image1

Conclusion

By directly linking rules to user identities, Day 7 improved firewall access control. By limiting access to sensitive resources to authenticated users, identity-based enforcement lowers the possibility of unwanted access. By incorporating user management into the security framework, network governance was enhanced and responsibility was raised.

Success Goal Achieved

  • Local user accounts were successfully created and maintained.
  • User groups were formed to streamline policy administration.
  • Identity-based regulations that demand authentication prior to access were enforced.
  • To ensure that users were being confirmed correctly, authentication was simulated.
  • increased accountability and transparency of user activities across the firewall.

Lessons Learned

  • Integrating identities is essential because without linking access to particular individuals, security is insufficient.
  • Applying rules to individual users is more difficult than managing policies in groups.
  • It is necessary to test authentication policies because incorrect setup could prevent authorized users from accessing them.
  • Scalability and enterprise-level flexibility are added by external server integration (LDAP/RADIUS/AD).
  • Accountability is increased by audit trails, which now display who accessed what in addition to the device.

Top comments (0)