Description

This article describes how to import a CSV file for a RADIUS client in FortiAuthenticator.

Scope

FortiAuthenticator.

Solution

If there is a list with more than  50 or 100 RADIUS clients in a CSV file format, it is possible to import them automatically without the need to add them manually in FortiAuthenticator.

Go to Authentication -> RADIUS service -> Clients and select 'Import'.

First, it is necessary to set the format for the CSV file; otherwise, it will show an error like the following while importing the CSV file.

It is also possible to edit the CSV file in Notepad++ to check if it is set to the correct format, as below :

Name: String (the same character restrictions as in the GUI).

Address: IP address, subnet, or IP range.

Secret: String (the same character restrictions as in the GUI).

Accept RADIUS accounting messages for usage enforcement: Boolean ('t' or 'f').

Support RADIUS Disconnect messages: Boolean ('t' or 'f').

Policy: Name of a RADIUS policy (optional).

It sets a combination of Unique IP and policy, IP range and policy, or Subnet and no policy.

For example:

The format with a Unique IP and no policy has been used as below.

Client_1,192.168.10.2,Mysecret123,t,t

Client_2,192.168.10.3,Mysecret123,t,t

Client_3,192.168.10.4,Mysecret123,t,t

If subnets are used, and no policy is used.

Client_1,192.168.10.2/24,Mysecret123,t,t

Client_2,192.168.11.3/24,Mysecret123,t,t

Client_3,192.168.12.4/24,Mysecret123,t,t

If  Acct-Session-Id attribute in RADIUS Disconnect-Request needs to be included.

Client_1,192.168.10.2,Mysecret123,t,t,t

Client_2,192.168.10.3,Mysecret123,t,t,t

Client_3,192.168.10.4,Mysecret123,t,t,t