Unlock Exclusive Benefits
Join Our Community Today!
Join our community and post in the forum to earn your exclusive Summer Badge! Become a member today!
LOGIN/REGISTER
CONTINUE AS A GUEST
- Support Forum
- Knowledge Base
- Customer Service
- Internal Article Nominations
- FortiGate
- FortiClient
- FortiADC
- FortiAIOps
- FortiAnalyzer
- FortiAP
- FortiAuthenticator
- FortiBridge
- FortiCache
- FortiCare Services
- FortiCarrier
- FortiCASB
- FortiConverter
- FortiCNP
- FortiDAST
- FortiData
- FortiDDoS
- FortiDB
- FortiDNS
- FortiDLP
- FortiDeceptor
- FortiDevice
- FortiDevSec
- FortiDirector
- FortiEdgeCloud
- FortiEDR
- FortiEndpoint
- FortiExtender
- FortiGate Cloud
- FortiGuard
- FortiGuest
- FortiHypervisor
- FortiInsight
- FortiIsolator
- FortiMail
- FortiManager
- FortiMonitor
- FortiNAC
- FortiNAC-F
- FortiNDR (on-premise)
- FortiNDRCloud
- FortiPAM
- FortiPhish
- FortiPortal
- FortiPresence
- FortiProxy
- FortiRecon
- FortiRecorder
- FortiSRA
- FortiSandbox
- FortiSASE
- FortiSASE Sovereign
- FortiScan
- FortiSIEM
- FortiSOAR
- FortiSwitch
- FortiTester
- FortiToken
- FortiVoice
- FortiWAN
- FortiWeb
- FortiAppSec Cloud
- Lacework
- Wireless Controller
- RMA Information and Announcements
- FortiCloud Products
- ZTNA
- 4D Documents
- Customer Service
- Community Groups
- Blogs
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
- Fortinet Community
- Support Forum
- FortiNAC Integrate with cisco WLC
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
FortiNAC Integrate with cisco WLC
Dear all,
We configured the SNMPv3 in Cisco WLC and it's connected with FortiNAC successfully. Also configured user account with highest privilege for CLI settings. We avoided special characters in the password as well. While validating the credentials getting below error message, anyone experienced this issues.
SNMP connect succeeded.However device failed to connect using CLI credentials.Device either does not support a CLI or credentials are invalid.
Any suggestions,
Labels:
- Labels:
-
FortiNAC
6 REPLIES 6
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi Siva
What is the WLC model?
Try it with the default WLC's admin user, just to check the behavior.
Also try connect from FNAC's CLI to the WLC and see if it works fine.
Also, did you change the default CLI prompt of your WLC? E.g. replaced the default "$", or ">" or any other by a custom sign/string?
AEK
AEK
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Dear AEK,
What is the WLC model? / Cisco Catalyst 9800-40 Wireless Controller
Try it with the default WLC's admin user, just to check the behavior./ Tried no luck
Also try connect from FNAC's CLI to the WLC and see if it works fine. / From FNAC CLI is working
Also, did you change the default CLI prompt of your WLC? E.g. replaced the default "$", or ">" or any other by a custom sign/string? / No, we are using the default one.
While we checking the logs, FNAC can able to connect but getting error while executing the command for Mac table. Find the below log message for your ref.
yams INFO :: 2025-11-13 13:33:20:528 :: #1017 :: SSH2: Authentication to 10.x.x.x succeeded
10.x.x.x
yams INFO :: 2025-11-13 13:33:32:741 :: #1017 :: TelnetSession.waitfor() ip = 10.x.x.x num bytes = 159
yams.TelnetServer INFO :: 2025-11-13 13:33:32:741 :: #1017 :: Warning: failed to execute CLI commands for IT-9800-WLC01 at 10.x.x.x.
Any suggestions / inputs ?
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Dear Siva
From the same logs try find which command it is running, then run the same on your WLC to double check if the command is correct or wrong.
AEK
AEK
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Other things to check..
The WLC firmware version must be supported. For the supported versions you can check on the FNAC doc for integrating this WLC.
Also make sure you didn't forget the enable password on FNAC credentials for your WLC, in case it is configured on WLC.
AEK
AEK
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Dear Tek,
We couldn't find the commands which is trying to execute, Find the below detailed logs. here 10.x.x.x is WLC
org.apache.sshd.common.io.nio2.Nio2ServiceFactory FINE :: 2025-11-13 13:57:59:335 :: #3600 :: close(org.apache.sshd.common.io.nio2.Nio2ServiceFactory@c4c172c)[Immediately] closed
org.apache.sshd.common.util.closeable.SequentialCloseable FINEST :: 2025-11-13 13:57:59:335 :: #3600 :: doClose(org.apache.sshd.common.util.closeable.SequentialCloseable$1@62cff9d9) closing [DefaultCloseFuture[id=SshClient[6c432324]][value=null]] immediately=true
org.apache.sshd.common.util.closeable.SequentialCloseable FINE :: 2025-11-13 13:57:59:335 :: #3600 :: doClose(org.apache.sshd.common.util.closeable.SequentialCloseable$1@62cff9d9) signal close complete immediately=true
org.apache.sshd.client.SshClient FINE :: 2025-11-13 13:57:59:335 :: #3600 :: close(SshClient[6c432324])[Immediately] closed
yams INFO :: 2025-11-13 13:57:59:817 :: #1017 :: TelnetSession.waitfor() ip = 10.x.x.x. num bytes = 159
yams.TelnetServer INFO :: 2025-11-13 13:57:59:817 :: #1017 :: Warning: failed to execute CLI commands for MDF1-IT-9800-WLC01 at 10.x.x.x.
yams INFO :: 2025-11-13 13:57:59:818 :: #148788 :: 10.x.x.x. Connection Closed
org.apache.sshd.client.channel.ChannelShell FINE :: 2025-11-13 13:57:59:817 :: #1017 :: close(ChannelShell[id=0, recipient=3]-ClientSessionImpl[netadmin@/10.x.x.x.:22]) Closing gracefully
org.apache.sshd.client.channel.ChannelShell FINE :: 2025-11-13 13:57:59:818 :: #1017 :: close(ChannelShell[id=0, recipient=3]-ClientSessionImpl[netadmin@/10.x.x.x.:22]) no EOF sent
org.apache.sshd.client.channel.ChannelShell FINEST :: 2025-11-13 13:57:59:818 :: #1017 :: signalChannelClosed(ChannelShell[id=0, recipient=3]-ClientSessionImpl[netadmin@/10.x.x.x.:22])[signalChannelClosed]
org.apache.sshd.common.channel.LocalWindow FINE :: 2025-11-13 13:57:59:818 :: #1017 :: Closing LocalWindow[client](ChannelShell[id=0, recipient=3]-ClientSessionImpl[netadmin@/10.x.x.x.:22])
org.apache.sshd.common.channel.RemoteWindow FINE :: 2025-11-13 13:57:59:818 :: #1017 :: Closing RemoteWindow[client](ChannelShell[id=0, recipient=3]-ClientSessionImpl[netadmin@/10.x.x.x.:22])
org.apache.sshd.common.util.closeable.SequentialCloseable FINEST :: 2025-11-13 13:57:59:819 :: #1017 :: doClose(org.apache.sshd.common.util.closeable.SequentialCloseable$1@7178c760) closing SequentialCloseable[DefaultCloseFuture[id=Builder][value=null]] immediately=false
org.apache.sshd.common.util.closeable.SequentialCloseable FINEST :: 2025-11-13 13:57:59:819 :: #1017 :: doClose(org.apache.sshd.common.util.closeable.SequentialCloseable$1@26ca709) closing FuturesCloseable[DefaultCloseFuture[id=ChannelShell[id=0, recipient=-1]-ClientSessionImpl[netadmin@/10.x.x.x.:22]][value=null]] immediately=false
org.apache.sshd.common.util.closeable.FuturesCloseable FINEST :: 2025-11-13 13:57:59:819 :: #1017 :: doClose(false) future pending: 2
org.apache.sshd.common.util.closeable.FuturesCloseable FINEST :: 2025-11-13 13:57:59:819 :: #1017 :: doClose(false) complete pending: 1
org.apache.sshd.common.util.closeable.FuturesCloseable FINEST :: 2025-11-13 13:57:59:819 :: #1017 :: doClose(false) complete pending: 0
org.apache.sshd.common.util.closeable.SequentialCloseable FINEST :: 2025-11-13 13:57:59:819 :: #1017 :: doClose(org.apache.sshd.common.util.closeable.SequentialCloseable$1@26ca709) closing [DefaultCloseFuture[id=ChannelShell[id=0, recipient=3]-ClientSessionImpl[netadmin@/10.x.x.x.:22]][value=null]] immediately=false
org.apache.sshd.client.channel.ChannelShell FINEST :: 2025-11-13 13:57:59:820 :: #1017 :: close(ChannelOutputStream[ChannelShell[id=0, recipient=3]-ClientSessionImpl[netadmin@/10.x.x.x.:22]] SSH_MSG_CHANNEL_DATA) closing
org.apache.sshd.client.channel.ChannelShell FINE :: 2025-11-13 13:57:59:820 :: #1017 :: sendEof(ChannelShell[id=0, recipient=3]-ClientSessionImpl[netadmin@/10.x.x.x.:22]) SSH_MSG_CHANNEL_EOF (state=Graceful)
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Try using this command, and it should show what we are looking for.
exec enter-shell
device -ip 10.x.x.x -setAttr -name DEBUG -value "TelnetServer ForwardingInterface"
tail -f /bsc/campusMgr/master_loader/logs/output.master | grep ":: write = "
AEK
AEK
Labels
-
FortiGate
10,859 -
FortiClient
2,221 -
FortiManager
908 -
FortiAnalyzer
693 -
5.2
687 -
5.4
638 -
FortiSwitch
602 -
FortiClient EMS
589 -
FortiAP
570 -
IPsec
457 -
6.0
416 -
SSL-VPN
396 -
FortiMail
383 -
5.6
362 -
FortiNAC
313 -
FortiWeb
259 -
6.2
251 -
FortiAuthenticator v5.5
234 -
SD-WAN
209 -
FortiAuthenticator
189 -
FortiGuard
162 -
5.0
152 -
Firewall policy
150 -
FortiGate-VM
143 -
6.4
128 -
FortiCloud Products
121 -
FortiToken
115 -
FortiSIEM
114 -
FortiGateCloud
113 -
Wireless Controller
97 -
High Availability
94 -
Customer Service
89 -
Routing
80 -
ZTNA
80 -
FortiProxy
79 -
SAML
79 -
VLAN
75 -
BGP
74 -
Fortivoice
73 -
DNS
73 -
Certificate
73 -
Authentication
72 -
FortiEDR
71 -
FortiADC
70 -
RADIUS
65 -
LDAP
65 -
FortiLink
60 -
SSO
58 -
NAT
57 -
FortiSandbox
55 -
FortiExtender
53 -
Interface
50 -
VDOM
50 -
4.0MR3
49 -
Application control
49 -
Virtual IP
46 -
Logging
44 -
FortiDNS
43 -
SSL SSH inspection
40 -
FortiGate v5.4
38 -
FortiSwitch v6.4
38 -
FortiPAM
38 -
Web profile
38 -
FortiConnect
35 -
Automation
35 -
FortiWAN
31 -
FortiConverter
31 -
API
30 -
FortiGate v5.2
28 -
Fortigate Cloud
27 -
Traffic shaping
26 -
Static route
26 -
SNMP
25 -
SSID
25 -
FortiSwitch v6.2
23 -
FortiPortal
23 -
System settings
23 -
WAN optimization
22 -
FortiMonitor
21 -
OSPF
21 -
Web application firewall profile
20 -
Security profile
19 -
Web rating
19 -
IP address management - IPAM
19 -
FortiSOAR
18 -
FortiAP profile
17 -
FortiGate v5.0
16 -
FortiDDoS
16 -
Explicit proxy
16 -
Admin
15 -
IPS signature
15 -
Proxy policy
15 -
Intrusion prevention
15 -
FortiManager v4.0
14 -
FortiCASB
14 -
NAC policy
14 -
FortiManager v5.0
13 -
DNS filter
13 -
Users
13 -
FortiDeceptor
12 -
Traffic shaping policy
12 -
Fabric connector
12 -
Port policy
12 -
FortiBridge
11 -
FortiRecorder
11 -
Trunk
11 -
Authentication rule and scheme
11 -
FortiAnalyzer v5.0
10 -
FortiWeb v5.0
10 -
Traffic shaping profile
10 -
Fortinet Engage Partner Program
10 -
FortiGate v4.0 MR3
9 -
RMA Information and Announcements
9 -
Antivirus profile
9 -
FortiCache
8 -
FortiToken Cloud
8 -
Application signature
8 -
4.0
7 -
4.0MR2
7 -
Packet capture
7 -
VoIP profile
7 -
Vulnerability Management
7 -
FortiScan
6 -
FortiNDR
6 -
DoS policy
6 -
FortiCarrier
5 -
FortiTester
5 -
DLP profile
5 -
DLP sensor
5 -
Email filter profile
5 -
Protocol option
5 -
TACACS
5 -
Cloud Management Security
5 -
3.6
4 -
FortiDirector
4 -
Internet service database
4 -
DLP Dictionary
4 -
Netflow
4 -
Replacement messages
4 -
SDN connector
4 -
Service
4 -
Multicast routing
4 -
FortiDB
3 -
FortiHypervisor
3 -
FortiAI
3 -
Kerberos
3 -
File filter
3 -
Multicast policy
3 -
FortiEdge Cloud
3 -
FortiInsight
2 -
Video Filter
2 -
Schedule
2 -
ICAP profile
2 -
Zone
2 -
Lacework
2 -
FortiGuest
2 -
4.0MR1
1 -
FortiManager-VM
1 -
FortiCWP
1 -
Subscription Renewal Policy
1 -
FortiSASE
1 -
Virtual wire pair
1 -
FortiEdge
1 -
FortiAIOps
1
Top Kudoed Authors
| User | Count |
|---|---|
| 2783 | |
| 1423 | |
| 812 | |
| 746 | |
| 455 |
Broad. Integrated. Automated.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Security Research
Company
News & Articles
Copyright 2025 Fortinet, Inc. All Rights Reserved.