Explorer

Solved

Fortinac Radius not enabled on device

Forum|Forum|10 months ago
July 28, 2025
3 replies
1840 views

Hi

I have FortiNAC version 7.4.1.0451 and Fortigate version 7.2.11. FortiAP 432F, SSID(traffic mode = tunnel) is using WPA2 ENTERPRISE and radius is selected pointing to the fortinac.

Fortinac Winbind status is running and joined to the domain.

I get access-reject error in log. radius not enabled on device. radius reject.png fortigate radius setting 1.png fortigate radius setting.png

Best answer by ebilcari

If this setup is a fresh deployment in firmware version 7.4.1, than this may be affected by a known issue 1129743. The fix will be included in the next release of 7.4.2 which is scheduled to be published in a few days.

AEK

SuperUser

Under FortiNAC inventory, select the FortiGate that owns the FortiAP, then SSID tab, and check if your FNAC's local RADIUS is selected for the SSID.

AEK

ipsectunnelAuthor

Explorer

Hi, thanks for your response. The below is what I have set.

NAC radius.png SSID radius.png

ebilcariAnswer

Staff

If this setup is a fresh deployment in firmware version 7.4.1, than this may be affected by a known issue 1129743. The fix will be included in the next release of 7.4.2 which is scheduled to be published in a few days.

Emirjon

ipsectunnelAuthor

Explorer

Hi, the deployment is about a month old so fairly fresh with FortiNAC 7.4.1

ipsectunnelAuthor

Explorer

Thank you guys for the suggestions. I really appreciate the guidance that came without being condescending. I did the upgrade to 7.6.3 and I do not get the error any long but a new error appeared which "access deny post auth" so I checked my policies and changed some things on the Fortigate under inventory. I am able to authenticate with domain credentials and get access to the production network if the WiFi client is compliant on with the host profile.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded