Description | This article describes how to administratively access FortiNAC using an external RADIUS server like FortiAuthenticator. |
Scope | FortiNAC, FortiAuthenticator. |
Solution |
Note: In later versions of FortiNAC starting from v7.4, the default RADIUS server settings have been changed. A domain mapping is required with the 'Portal/Admin Default' option checked.
FortiAuthenticator RADIUS debug logs:
To log in with a Two-Factor Authentication (2FA) user configured on FortiAuthenticator, follow these steps:
Note: This 2FA method is provided by FortiAuthenticator, and FortiNAC is not currently aware of the token included in the password. Native support for 2FA is planned for future releases of FortiNAC.
Related articles: Technical Tip: 8021x PEAP MSCHAP-V2 with FortiAuthenticator and FortiNAC as RADIUS proxy |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.