Help
FortiPortal
FortiPortal provides a comprehensive set of security management and analytics within a multi-tenant, multi-tier management framework.
glebras_FTNT
Staff
Staff

Created on ‎02-07-2018 03:46 AM

Article Id 193112

Technical Note: FortiPortal RADIUS Vendor-Specific Attributes (VSA)

Description
This article describes the Vendor-Specific Attributes to configure FortiPortal in a RADIUS Server.

Scope
FortiPortal v4.0

Solution
To configure a RADIUS Server for FortiPortal, add the following vendor-specific attribute to the Fortinet dictionary file:
VENDOR 12356 Fortinet

Then configure VSA for mapping to FortiPortal role:
VENDORATTR Fortinet-Fpc-User-Role 40 string

Multiple roles can be specified by using comma-separated values.  Also, note that a user will not be able to login to FortiPortal if the roles are not configured on the RADIUS Server.

To specify the customer identification, configure VSA attribute for mapping to customer profile when using RADIUS authentication:
VENDORATTR Fortinet-FPC-Tenant-Identification 41 string

The RADIUS server will send one of the domain names specified in the Domains field of the customer settings in the value of the VSA

2078
0 Kudos
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.