FortiAuthenticator is showing a lots of Fortitokens with pending status. Some users with tokens with this status are reporting problems to authenticate by VPN and some others users with tokens with this status are reporting that it is working well. The same actual today's configuration worked in the past and we don't have new configuration and with no changes in the IT infrastructure. See pictures bellow for a better analisys.
Does anyone here have any experience solving a similar problem?
Hello @jnascimento ,
In normal times pending status is shown by FortiAuthenticator when the user does not activate their token. But you say, some user tokens show pending but they can connect to vpn with 2FA. It's an interesting point.
Are you sure, they connect with the 2FA code? Maybe in the radius rule you missed configuring force to 2FA. Because of that, they can connect without a 2FA code.
Can you check this status with your user? Which do you use a version of FortiAuthenticator?
@ozkanaltas Thanks for your repply. Yes this is interesting point and I looks like a bug. I'm sure the users connect with the 2FA code, they cant connect without a 2FA code. Some users with tokens with pending status are reporting problems to authenticate by VPN but some others users with tokens with this status are reporting that it is working well. See pictures bellow for a better analisys.
Hello @jnascimento,
What is FAC firmware version?
Is this a new setup?
Did it work before, or you faced this issue after any upgrade?
BR
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1735 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.