I am testing a Fortigate using RADIUS with Entrust's IDaaS service. Has anyone else used this? I am having issues where when testing credentials in the Fortigate it comes back "invalid response."
Hey tim,
I have not tested with Entrust's IDaaS service, but I do have some experience with FortiGate and RADIUS.
The GUI test can sometimes be a bit finicky and doesn't handle anything aside from an Access-Accept (success) very well; I suggest always testing via CLI, as that can handle responses better (for example, if 2FA is involved the CLI test will let you provide the token, the GUI test will just show an error).
#dia test authserver radius <name of the RADIUS server in FGT> <pap|chap|mschap2> <username> <password>
As an example:
#dia test authserver radius FortiAuthenticator mschap2 debbie ftnt123!
Give it a go and see if the CLI test is better suited to verifying that credentials are working :)
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1735 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.