Hello, I am trying to setup a FortiAuthenticator policy for Wireless
dot1x. The authentication works but RADIUS attributes (vlan and ACL) is
not pushed to client.Here is what I have tested; Added the Remote
LDAPCreated a User Group which retrieves us...
I have a, maybe silly question but maybe someone can answer me.. We have
FAC setup with RADIUS clients in a 10.10.0.0/16 subnet, mainly used
towards switches for MAB. The thing is we want to configure VPN for a
firewall with an IP in the same subnet....
I may have solved it, I will test later today and get back to you. I had
not checked "Return User Group Attributes" in the RADIUS Response tab in
the Policy. EDIT; This solved my issue. The attributes are now being
sent to client.Thanks for all your ...
I solved this by alternating shared secrets. But I did not get an answer
on my question regarding matched Radius attribute. Is it a limitation to
match on exact string/integer or is it possible to use regexp (or
similiar)?
The policy is on top of policy list! We are running version: v6.6.2,
build1669 (GA). I have checked the debug and the client hits the correct
policy, here is some output from a couple of days ago;
2025-05-27T15:13:12.216785+02:00 FortiAuthenticator r...
Yes I have created a group filter, it looks like this And I have two
groups for test;One which retrieves clients based on ldap filter the
other one on imported users, none of them works
Thanks for your response, since I tested this with MAB and local user I
assume the NAS already understands the attributes. In this case I am
using;Tunnel-Type - VLANTunnel-Medium-Type -
IEEE-802Tunnel-Private-Group-ID - That link did not help very
m...
