|Description||This article describes the SSL-VPN authentication with FortiOS version 5.6 sometimes results in dead sessions in the RADIUS authentication process fnbamd.|
|Scope||FortiGate V5.6, FortiAuthenticator V5.4.|
The FortiAuthenticator debug log:
The same log keeps coming every 10 seconds. The RADIUS authentication requests looping is sent from the FortiGate (RADIUS Client) repeatedly, IP address of 172.20.110.33 is the FortiGate.
The debug log continuously appears on FortiGate/FortiAuthenticator.
# diag debug application sslvpn -1
Logging -> Log Access -> Logs -> Debug Report (button).
It occurred when there is more than one firewall policy that matched with the same remote FortiAuthenticator (for the case) when a user tries to login with an invalid password or key in a wrong password.