Technical Tip: FortiGate will not return the custom NAS-ID for RADIUS while testing from the GUI
| Description | This article describes that the custom NAS-ID configured for the RADIUS will return the HA group name instead of the custom attribute. |
| Scope | FortiOS 7.2.4 + versions. |
| Solution | Custom NAS-ID configuration:
config user radius end
As per the configuration, the NAS-ID attribute should be sent as 'Fortigate-RADIUS', however when testing from the GUI, the NAS-ID will be sent as the group name 'FGT cluster' configured in the HA settings.
config system ha
It is reported as a GUI bug (# 1055336). As a workaround, perform the test in the CLI with the given command:
diag test authserver radius <server_name> <chap | pap | mschap | mschap2> <username> <password>
This bug will not impact the regular authentication and the issue is resolved in FortiOS 7.4.5 and 7.6.1 firmware versions. |