Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
aahmadzada
Staff
Staff

Created on ‎09-28-2022 02:13 AM

Article Id 224971

Technical Tip: Behavior of FortiOS while testing connectivity against remote authentication servers

Description This article describes the behavior of FortiOSwhile testing connectivity against remote authentication servers.
Scope FortiOS.
Solution

FortiOS performs different approaches when it comes to testing the connectivity with remote authentication servers like LDAP or RADIUS.

 

Testing Connectivity against LDAP Server:

 

FortiOS will perform a simple LDAP bind using the configured credentials against the LDAP server and if the LDAP bind is successful, the connection to the LDAP server will be considered sustainable.

 

LDAP-Test-Connectivity.PNG

 

Testing Connectivity against RADIUS Server:

 

FortiOS will send RADIUS Access-Request message for user 'user01' to the Radius server and will expect Access-Accept or Access-Reject to consider the connection to the RADIUS sustainable.

The username user for that purpose is hardcoded to the FortiOS and cannot be altered.

 

RADIUS-Test-Connectivity.PNG
197
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.