Help
FortiNAC-F
FortiNAC-F is a zero-trust network access solution that provides users with enhanced visibility into the Internet of Things (IoT) devices on their enterprise networks. For legacy FortiNAC articles prior to FortiNAC-F 7.2, see FortiNAC.
pdipen
Staff
Staff

Created on ‎07-17-2024 09:18 PM Edited on ‎07-18-2024 05:16 AM By Moderator

Article Id 326569

Troubleshooting Tip: The L2 polling for the FortiGate is frequently failing in FortiNAC

Description This article describes the behavior when FortiGate frequently experiences failures for L2 polling.
Scope FortiNAC, FortiGate.
Solution

SNMP and CLI credentials are working, but the L2 polling for FortiGate frequently fails due to the 'java.net.SocketTimeoutException: Read timed out' error in output.master logs for FortiGate.

This means FortiNAC is trying to read data from the request, but it is taking longer than the timeout value for the data to arrive from the FortiGate.

 

To resolve the issue:

  1. Login to the FortiNAC CLI.
  2. Go to the Shell mode:

 

execute enter-shell

 

  1. Change the API_Connect_TIMEOUT and API_READ_TIMEOUT value as below:

 

> Device -ip <FGT IP addr> -setAttr -name API_CONNECT_TIMEOUT -value <time in milliseconds>

> Device -ip <FGT IP addr> -setAttr -name API_READ_TIMEOUT -value <time in milliseconds>

 

Example: 

 

> Device -ip 10.10.10.1 -setAttr -name API_CONNECT_TIMEOUT -value 180

> Device -ip 10.10.10.1 -setAttr -name API_READ_TIMEOUT -value 45

 

Note

By default, the API connect timeout value is 120 seconds and the API read timeout value is 30 seconds.
214
0 Kudos
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.