Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
ipsectunnel
New Contributor II

Created on ‎07-28-2025 12:33 AM

Fortinac Radius not enabled on device

Hi

 

I have FortiNAC version 7.4.1.0451 and Fortigate version 7.2.11. FortiAP 432F, SSID(traffic mode = tunnel) is using WPA2 ENTERPRISE and radius is selected pointing to the fortinac. 

 

Fortinac Winbind status is running and joined to the domain.

I get access-reject error in log. radius not enabled on device.radius reject.pngfortigate radius setting 1.pngfortigate radius setting.png

 

 

 

398
0 Kudos
1 Solution
ebilcari
Staff
Staff

Created on ‎07-28-2025 12:43 AM

If this setup is a fresh deployment in firmware version 7.4.1, than this may be affected by a known issue 1129743. The fix will be included in the next release of 7.4.2 which is scheduled to be published in a few days.

- Emirjon
If you have found a solution, please like and accept it to make it easily accessible for others.

View solution in original post

368
11 REPLIES 11
AEK
SuperUser
SuperUser

Created on ‎07-28-2025 12:39 AM

Under FortiNAC inventory, select the FortiGate that owns the FortiAP, then SSID tab, and check if your FNAC's local RADIUS is selected for the SSID.

AEK
AEK
313
0 Kudos
ipsectunnel
New Contributor II
In response to AEK

Created on ‎07-28-2025 12:47 AM

Hi, thanks for your response. The below is what I have set.

 

 

NAC radius.pngSSID radius.png

299
0 Kudos
ebilcari
Staff
Staff

Created on ‎07-28-2025 12:43 AM

If this setup is a fresh deployment in firmware version 7.4.1, than this may be affected by a known issue 1129743. The fix will be included in the next release of 7.4.2 which is scheduled to be published in a few days.

- Emirjon
If you have found a solution, please like and accept it to make it easily accessible for others.
369
ipsectunnel
New Contributor II
In response to ebilcari

Created on ‎07-28-2025 12:49 AM

Hi, the deployment is about a month old so fairly fresh with FortiNAC 7.4.1

291
0 Kudos
AEK
SuperUser
SuperUser
In response to ebilcari

Created on ‎07-28-2025 12:55 AM

Hi Emirjon

BTW, why 7.4 is at patch 1 and 7.6 is at patch 3? This is not common.

Could it mean like 7.4 is short term support or something similar?

AEK
AEK
274
0 Kudos
ebilcari
Staff
Staff
In response to AEK

Created on ‎07-28-2025 01:04 AM

No, I think the 7.4 branch will become the main focus once the 7.2 branch reaches EOES (in a few months). The 7.6 branch introduced many new features, which likely explains the faster release of patches.

- Emirjon
If you have found a solution, please like and accept it to make it easily accessible for others.
262
ipsectunnel
New Contributor II
In response to ebilcari

Created on ‎07-28-2025 02:39 AM

Should I wait for 7.4.2 or move to 7.6.x ?

238
0 Kudos
ebilcari
Staff
Staff
In response to ipsectunnel

Created on ‎07-28-2025 03:07 AM

Firmware version 7.6.3 includes the fix for this issue. If it is not urgent, I would suggest waiting for the release of version 7.4.2.

- Emirjon
If you have found a solution, please like and accept it to make it easily accessible for others.
225
AEK
SuperUser
SuperUser
In response to ebilcari

Created on ‎07-28-2025 03:45 AM

Hi Emirjon

BTW again, which version you "currently" recommend to install for critical production?

I mean are currently 7.4.1 or 7.6.3 stable enough for critical production or is it safer to install 7.2.9?

AEK
AEK
214
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.