Home > Fortinet > Fortinet Network Access > FortiToken - 2-Factor Authentication

FortiToken Strong Authentication Solutions allow you to easily enable Two-factor Authentication for access to protected Networks and Security devices. Two-factor authentication solutions improve security and reduce the risk of compromise inherent in single-factor authentication solutions such as static passwords.

FortiToken 2-factor authentication solution devices enable administrators to offer enhanced security for both remote and on-premise users. It ensures that only authorized individuals can access your organization's sensitive information. Each FortiGate™ consolidated security platform is able to provide an integrated authentication server. Combining this strong authentication capability with one of the FortiToken One Time Password (OTP) security devices or mobile applications eliminates the need for an external authentication server. The short-lived, time-based token adds strong authentication to secure remote IPSEC and SSL VPN access, Wi-Fi Captive Portal network logon and FortiGate Administrator login. The token always remains synchronized with the FortiGate controller.

FortiToken PKI tokens also provide strong authentication using the token’s private key as the second factor, in addition to offering other PKI based functionality such as digital encryption and signing. FortiToken OTP and PKI tokens are also integrated with FortiAuthenticator, which serves as the centralized authentication and token manager, as well as PKI manager.

FortiToken Models

FortiToken-300 - USB Smart Card Token
The FortiToken 300 is a USB Token for X.509 PKI certificates used in securing Internet transactions for applications including signing/encrypting email, PDF documents, Microsoft Office files, and software, as well as for strong authentication to your VPN or web-based applications. Client certificates are known to provide higher security than One-Time-Password (OTP) tokens for two factor authentication solutions, but the private key of the PKI certificate must be kept secret to be effective. Private keys generated and stored on FortiToken 300 PKI authenticators are more secure than private keys stored as files on local hard disks because FortiToken 300 cannot be coerced to expose the private key.

FortiToken-200/200CD - TOTP Token

OATH compliant Time-based One Time Password (TOTP) tokens lets you solve Network Authentication Security problems affordably by adding a Second Factor for Strong Authentication. Relying solely on static passwords for remote access to your VPN and web sites provides only weak authentication, because your users’ passwords are vulnerable to theft or guessing, as well as dictionary and brute-force attacks.

To solve these problems you can deploy FortiToken-200 OTP token using either FortiGate consolidated network security appliances or FortiAuthenticator as your authentication server, depending on your organizational needs.

FortiToken 200CD tokens are shipped with an encrypted activation CD for the ultimate in OTP token seed security.

FortiToken Mobile - OTP for Mobile Devices

FortiToken Mobile is an OATH compliant, time-based One Time Password (OTP) generator application for the mobile device. It is the client component of Fortinet’s highly secure, simple to use and administer, and extremely cost effective solution for meeting your strong authentication needs.

It makes the end-user mobile device behave like a hardware based one-time-password OTP token without the hassle of carrying one, while providing easy administration and high security for network authentication.

Data Sheets:

FortiToken-300 Fortinet FortiToken-200 Fortinet FortiToken-200CD Fortinet FortiToken-Mobile Fortinet Product Matrix

For more information or pricing call CPU Distributing, Inc. at 800-880-4200!