Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Akmostafa
New Contributor III

Created on ‎08-18-2022 04:15 PM

Accounting to FortiAuthenticator and user usage profiles

Hello Friends.

I have followed the exact steps described in the below KB.

The user is successfully authenticated to the SSID and is viewed on the Fortigate as a firewall user (#dia firewall auth list)

I can see from packet capture that FG is sending the interm accounting messages to FAC on the specified period  and I see the ACC response packets from fAC in the sniffer.

 

However, on FAC -- monitor --- radius sessions I see 0 accounting sessions.

When I view user usage details : it is not counting anything and the user is not disconnected when reaching the max kilobytes specified in the suer profile.

 

I am not sure what I am missing here.

 

https://community.fortinet.com/t5/FortiAuthenticator/Technical-Tip-Usage-Profiles-not-enforced-for-R...

 

 

Labels:
3603
0 Kudos
1 Solution
Markus_M
Staff & Editor
Staff & Editor
In response to Akmostafa

Created on ‎08-24-2022 09:07 AM

Hello,

 

please also check this one (that should match the ports you are using):

2022-08-24_18-05-51.png

Best regards,

 

Markus

- Markus

View solution in original post

3558
0 Kudos
11 REPLIES 11
ismailurek2
New Contributor III
In response to ismailurek2

Created on ‎01-02-2025 05:33 AM

Hi,

 

When I define the DMZ interface as source-ip, I solve that problem but this time I get invalid secret error.

 

image.png

274
0 Kudos
Akmostafa
New Contributor III
In response to ismailurek2

Created on ‎01-26-2025 12:25 PM

Make sure secret configured on FAC matches the one confiured on Fortigate under : 

config accounting server

 

also if you FortiOS is higher than 

 7.2.9 or 7.4.4 or 7.6.0

then check the below update:

https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-RADIUS-authentication-failure-after-...

242
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.