FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Vichu_94
Staff
Staff
Article Id 216214
Description This article describes how to configure a Radius server.
Scope FortiGate. 
Solution

To configure the Radius server from GUI:


Go to User & Authentication -> Radius Server and select 'Create New'. 

Vichu_94_0-1656489981946.png

 

After that fill in the NAS IP address, the Radius server IP address and the shared secret key .

 

It is also necessary to test the connection and test user credentials to verify if the connection is established and user credentials are correct.

 

To configure the same on the CLI, follow the below command: 


# config user radius
    edit "Test-radius"
        set server "10.40.19.173"
        set secret "radius secret" 

        set nas-ip 10.40.19.228
    next
end 

 

To check if the user credentials are correct from the CLI, run the below command:


# di test authserver radius <Radius_name> pap <username> <password>


For troubleshooting and debugging logs for Radius:

 

# diag debug app fnbamd -1
# diag debug app radius -1

# diag debug enable

Contributors