Details

Note - this reports on the trusted hosts for the default user 'admin'. You can choose to copy this check and replace the username 'admin' with other user names. Setting trusted hosts for an administrator limits what computer/location an administrator can log into the FortiGate unit from. When you identify a trusted host, the FortiGate unit will only accept the administrator's login from the configured IP address of the trusted host. Any attempt to log in with the same credentials from any other IP address will be dropped.




Solution

To add a trusted host for an administrative user, use the following command:

config system admin
edit
set {trusthost1 | trusthost2 | trusthost3 | trusthost4
| trusthost5 | trusthost6 | trusthost7 | trusthost8
| trusthost9 | trusthost10}
end


Supportive Information

The following resource is also helpful.

This security hardening control applies to the following category of controls within NIST 800-53: Access Control.This control applies to the following type of system FortiGate.


References


Source