All of 802.1x auth setups I saw relied on RADIUS authentication between end point and WLC (wireless controller) handling particular AP through which user connected. That WLC or RADIUS server can send RADIUS Accounting messages to FSSO Collector. Either to FAC (FortiAuthenticator), standalone FSSO Collector installed on DC, or FortiGate (FGT) handling RSSO/FSSO. Any of those 3 solutions then process RADIUS Accounting Start/Stop/Interim messages to create authenticated user either in FW (FGT) or as FSSO user record and distribute to connected FSSO clients/FortiGates (FAC/standalone Collector). Solution on FGT is slightly different as it is older then RADIUS to FSSO implemented in FAC/standalone Collector.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.