Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
pmeet
Staff
Staff

Created on ‎12-13-2022 06:19 AM Edited on ‎12-13-2022 07:34 AM By Moderator

Article Id 239431

Troubleshooting Tip: Fixing a wrong policy for authentication using RADIUS

Description

While using RADIUS in addition to another auth server for authentication, FortiGate sometimes uses the wrong policy. The RADIUS server is not mentioned in the group but authentication still occurs through the RADIUS server.

Scope

FortiGate.

Solution 

See documentation for more information on RADIUS server authentication:

https://docs.fortinet.com/document/fortigate/6.0.0/handbook/634373/authentication-servers#RADIUS_ser... 

 

To fix this issue, follow the steps below:

 

1) Under User and authentication -> Radius Servers, choose the intended RADIUS server.

2) Under the configuration, look for the Include in every user group' option.

 

If the option is enabled, disable it as it will include the RADIUS server in all groups of the firewall.

 

pmeet_0-1670874619242.png

  

pmeet_1-1670874619244.png

 
258
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.​

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2023 Fortinet, Inc. All Rights Reserved.