Help
FortiManager
FortiManager supports network operations use cases for centralized management, best practices compliance, and workflow automation to provide better protection against breaches.
jasonhong
Staff
Staff

Created on ‎01-02-2025 11:00 PM

Article Id 368021

Troubleshooting Tip: How to strengthen RADIUS protocol configuration in FortiManager/FortiAnalyzer

Description

This article describes how to strengthen RADIUS protocol configuration in FortiManager and FortiAnalyzer.
Scope

FortiManager v7.6.2.

FortiAnalyzer v7.6.2.
Solution

Starting from FortiManager/FortiAnalyzer version 7.6.2, the user will be able to include the additional configuration parameters below to strengthen the RADIUS protocol settings.

 

config system admin radius

    edit <server>

        set protocol {tls | udp}           --> TLS over TCP (RadSec) is enabled when the protocol is TLS.

        set ca-cert <string>           --> Option is only available when the protocol is TLS.

        set client-cert <string>       --> Option is only available when the protocol is TLS.

        set message-authenticator {optional | require}     --> When set to require, Message-Authenticator attribute is always used for the RADIUS Access-Request process.

end
100
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.