Technical Tip: How to interpret the output of 'fnbamd session list'

RBA · ‎08-22-2025

Description

This article describes how to interpret the output of 'fnbamd session list'.

Scope

FortiGate.

Solution

A session list for fnbamd can be printed with the 'diagnose test application fnbamd 2' command.

krypton-kvm07 # diagnose test application fnbamd 2
ID: 1606718672638, Token Auth: NONE, Expires (secs): 18446744073709551615, Auth Type: 0010, Server: ****
ID: 1606718672639, Token Auth: NONE, Expires (secs): 18446744073709551615, Auth Type: 0010, Server: ****
ID: 1606718672640, Token Auth: NONE, Expires (secs): 18446744073709551615, Auth Type: 0001, Server: ****
ID: 1606718672641, Token Auth: NONE, Expires (secs): 18446744073709551615, Auth Type: 0001, Server: ****
ID: 1606718672642, Token Auth: NONE, Expires (secs): 18446744073709551615, Auth Type: 0001, Server: ****
ID: 1606718672643, Token Auth: NONE, Expires (secs): 18446744073709551615, Auth Type: 0001, Server: ****
ID: 1606718672644, Token Auth: NONE, Expires (secs): 18446744073709551615, Auth Type: 0001, Server: ****
ID: 1606718672645, Token Auth: NONE, Expires (secs): 18446744073709551615, Auth Type: 0001, Server: ****
ID: 1606718672646, Token Auth: NONE, Expires (secs): 18446744073709551615, Auth Type: 0001, Server: ****

ID refers to the unique identifier for the auth session/token.
Token Auth indicates whether a reusable token is present. In this case 'NONE' means no token.
Expires indicates the time until the session expires. 18446744073709551615 is actually the maximum value.
Auth Types:
- 0010 = LDAP authentication
- 0001 = RADIUS authentication
Server indicates the authentication server used.

Technical Tip: How to interpret the output of 'fnbamd session list'

You are leaving our website