Description
FortiTrust Identity Cloud-Delivered Identity and Access Management Solution
FortiTrust Identity is a subscription-based, cloud-hosted IAM solution that centralises user authentication and access management across cloud and on-premises applications integrating natively with the Fortinet Security Fabric for unified, zero-trust identity control.
Deployment & Licensing
- Cloud-delivered, hosted in Fortinet data centres with 24/7 monitoring
- Subscription-based no capital expense
- User-based licensing tiers: 100499, 5001,999, 2,0009,999, and 10,000+ users
- Includes 24x7 FortiCare support and SMS credits
Authentication & MFA
- Multi-factor authentication: mobile push, email OTP, SMS OTP, hardware tokens, and FIDO2 (passwordless)
- Adaptive authentication evaluates risk at login based on time of day, geolocation, and historical usage patterns; only prompts for a second factor when risk exceeds a set threshold
- Supports SAML 2.0, OAuth2, and OIDC for cloud and web authentication
- Mobile apps for iOS and Android with secure cross-platform token transfer
Single Sign-On & Identity Federation
- SSO across enterprise applications and services to reduce repeated authentication
- SAML Service Provider/Identity Provider Web SSO and OpenID Connect SSO
- IdP broker/proxy capability centralises authentication across multiple external identity providers with uniform policy and MFA, independent of each IdP
Access Control & Integration
- Identity and role-based security policies
- Adaptive policies enforced by authorised network, user location, time of day/week, and device posture (requires FortiClient EMS)
- Native integration with FortiGate no additional gateway or software agents required
- Third-party application integration via REST API
- Fortinet Single Sign-On (FSSO) support
Certificate Management
- VPN certificate management
- PKCS#12 import, PKCS#10 CSR import, SCEP, OCSP, and certificate revocation (RFC3280)