We get this message
"Message Remote LDAP user authentication(chap) with FortiToken failed: invalid password"
We also get intermittent
"Cannot add user from LDAP server because of this error: Failed to import user "" (rule: AD Sync), The username attribute cannot be retrieved"
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
@atravel, could you tell us if your FAC is added to the Active directory as machine entity? And, if the option 'Use Windows AD Domain Auth' is enabled in the appropriate radius policy?
Below you can find article about these, and doc link.
Use Windows AD Domain Auth is not enabled.
What device is acting as radius Client? Could you adjust on Radius Client auth. method to PAP, and test it? If it works, you can keep working with PAP method, otherwise you should configure options above.
Our FortiGate is radius Client.
Is this ok?
Could you share the screen from Radius server configuration on Fortigate?
Change please 'Authentication method' to Specify > PAP, and try to reproduce the issue.
I made the change and Im monitoring the logs to see if the error will reappear.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1666 | |
1077 | |
752 | |
446 | |
220 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.