Help
FortiPAM
FortiPAM allows you to protect, isolate and secure privileged account credentials, manage and control privileged user access, and monitor and record privileged account activity.
tbarua
Staff
Staff

Created on ‎09-11-2025 05:47 AM

Article Id 410463

Troubleshooting Tip: Basic troubleshooting for admin logins in FortiPAM

Description

 

This article describes how to execute basic troubleshooting of admin logins in FortiPAM.

 

Scope

 

FortiPAM.

 

Solution

 

To troubleshoot admin login issues in FortiPAM, the following debug commands are applicable. The administrator can be either a remote admin or a local admin. 

 

diagnose debug console timestamp enable

diagnose debug application fnbamd -1

diagnose debug application httpsd -1

diagnose debug application authd -1

diag wad debug enable category auth

diagnose debug enable 

 

For this instance, the remote admin is being used:

 

2025-09-11 02:25:54 [1924] handle_req-Rcvd auth req 1616350893 for test_local in opt=0181031d prot=11

 

2025-09-11 02:17:15 [1924] handle_req-Rcvd auth req 1616350877 for test_local in opt=0181031d prot=11
2025-09-11 02:17:15 [467] __compose_group_list_from_req-Group 'FAC', type 6
2025-09-11 02:17:15 [616] fnbamd_pop3_start-test_local
2025-09-11 02:17:15 [519] __fnbamd_cfg_get_radius_list_by_server-Loading RADIUS server 'FAC'
2025-09-11 02:17:15 [342] fnbamd_create_radius_socket-Opened radius socket 12
2025-09-11 02:17:15 [342] fnbamd_create_radius_socket-Opened radius socket 13
2025-09-11 02:17:15 [1397] fnbamd_radius_auth_send-Compose RADIUS request

2025-09-11 02:17:15 [1326] __fnbamd_rad_send-Sent radius req to server 'FAC': fd=12, IP=10.x.x.x (10.x.x.x:1812) code=1 id=7 len=127 user="test_local" using PA
P
2025-09-11 02:17:15 [319] radius_server_auth-Timer of rad 'FAC' is added
2025-09-11 02:17:15 [634] create_auth_session-Total 1 server(s) to try
2025-09-11 02:17:15 [1360] fnbamd_auth_handle_radius_result-Timer of rad 'FAC' is deleted
2025-09-11 02:17:15 [1805] fnbamd_radius_auth_validate_pkt-RADIUS resp code 2
2025-09-11 02:17:15 [323] extract_success_vsas-FORTINET attr, type 1, val group
2025-09-11 02:17:15 [1385] fnbamd_auth_handle_radius_result-->Result for radius svr 'FAC' 10.x.x.x(1) is 0  > - 0: authentication  success; 1: authentication failed.


2025-09-11 02:17:15 [267] find_matched_usr_grps-Skipped group matching
2025-09-11 02:17:15 [216] fnbamd_comm_send_result-Sending result 0 (nid 0) for req 1616350877, len=2171 

 

Verify the system event from the FortiPAM GUI:

 

PAM_admin.png

Labels:
130
0 Kudos
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.