Description |
This article describes a scenario where the user is facing issues while utilizing wireless authentication via radius through FortiNAC while using a loopback interface as source IP under user radius settings:
config system interface However, upon connecting to the Wi-Fi SSID, it authenticates to the radius successfully through FortiNAC. It matches against the proper network access policies, but the devices never leave the isolation subnet and get stuck in the isolation VLAN. |
Scope | FortiGate. |
Solution |
To troubleshoot the issue further, the following output needs to be collected and provided to TAC for further investigation:
diag sniffer packet any 'port 1812 or 1813 or 3799 or 1700' 6 0 a
diagnose debug app radius-das 255
diagnose wpa wpad sta |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.