Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
ed_udri
New Contributor

Created on ‎04-02-2025 07:35 AM

Setting up LDAP on a standalone FortiSwitch

Hi, 

Right now using on login for our standalone FortiSwitches and wanted to setup LDAP for authentication. 

FortiSwitch_148F-FPOE, V7.2.9. Can't see an article on this but saw on that say it is not supported, however, that was 2023.  Thanks 

Labels:
120
0 Kudos
1 Solution
atakannatak
Contributor

Created on ‎04-02-2025 11:24 AM Edited on ‎04-02-2025 11:25 AM

Hi @ed_udri ,

 

FortiSwitch supports external authentication primarily through RADIUS and TACACS+ protocols.

 

https://community.fortinet.com/t5/Support-Forum/Fortiswitch-Authentication-Using-LDAP/m-p/255008

 

Below is the CLI reference document, which will serve as a guide for the configuration process.

 

https://docs.fortinet.com/document/fortiswitch/7.2.10/fortiswitchos-cli-reference/193187/config-user...

 

While there have been instances where LDAP authentication was attempted, such configurations led to issues such as memory leaks causing switches to crash.

 

https://docs.fortinet.com/index.php/document/fortiswitch/7.2.9/release-notes/255778/resolved-issues

 

Therefore, to ensure stability or optimal performance, it maybe the best way to utilize RADIUS or TACACS+ for external authentication on FortiSwitch.​

 

BR.

 

If my answer provided a solution for you, please mark the reply as solved it so that others can get it easily while searching for similar scenarios.

 

CCIE #68781

Atakan Atak

View solution in original post

Atakan Atak
68
2 REPLIES 2
atakannatak
Contributor

Created on ‎04-02-2025 11:24 AM Edited on ‎04-02-2025 11:25 AM

Hi @ed_udri ,

 

FortiSwitch supports external authentication primarily through RADIUS and TACACS+ protocols.

 

https://community.fortinet.com/t5/Support-Forum/Fortiswitch-Authentication-Using-LDAP/m-p/255008

 

Below is the CLI reference document, which will serve as a guide for the configuration process.

 

https://docs.fortinet.com/document/fortiswitch/7.2.10/fortiswitchos-cli-reference/193187/config-user...

 

While there have been instances where LDAP authentication was attempted, such configurations led to issues such as memory leaks causing switches to crash.

 

https://docs.fortinet.com/index.php/document/fortiswitch/7.2.9/release-notes/255778/resolved-issues

 

Therefore, to ensure stability or optimal performance, it maybe the best way to utilize RADIUS or TACACS+ for external authentication on FortiSwitch.​

 

BR.

 

If my answer provided a solution for you, please mark the reply as solved it so that others can get it easily while searching for similar scenarios.

 

CCIE #68781

Atakan Atak
Atakan Atak
69
ed_udri
New Contributor

Created on ‎04-03-2025 07:51 AM

Hi @atakannatak

Thanks for the help.

62
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.