Description
This article shows one of the possible solutions for a scenario where the hardware Token has a 'Pending' status in FortiGate -> User & Authentication -> FortiTokens and the error: 'Token server status : unreachable' appears under the command: 'diag fortitoken info' appears.
Scope
FortiGate.
Solution
Sample errors seen in FortiGate:
1) Turn on activation debugging by executing the commands below:
diag debug reset
diag debug console timestamp en
diag debug app forticldd 255
diag debug en
diag debug info
2) If this output below is visible, where 'Too many tasks in queue: 10', proceed in killing forticldd process by executing the command below:
# fnsysctl killall forticldd
3) Run 'diag fortitoken info' command and see if the Token server status is now reachable.
4) If it is reachable, proceed by selecting 'Refresh' -> User & Authentication -> FortiTokens. After a short time, the hard Token will now be in 'Available' status from 'Pending'.
Related article:
