FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
xsilver_FTNT
Staff
Staff
Article Id 194896

Description

 

This article gives the list of valid RADIUS VSA Dictionary (vendor-specific attributes) of Fortinet devices.
 
Refer to the Related Articles for FortiGate Radius VSA Dictionary (vendor-specific attributes).


Scope


# -*- text -*-
##############################################################################
#
#    Fortinet's VSA's
#
#    2019-0502
#
##############################################################################

#
#    Fortinet's VSA's
#

VENDOR Fortinet 12356

BEGIN-VENDOR Fortinet

ATTRIBUTE   Fortinet-Group-Name                           1 string
ATTRIBUTE   Fortinet-Client-IP-Address                    2 ipaddr
ATTRIBUTE   Fortinet-Vdom-Name                            3 string
ATTRIBUTE   Fortinet-Client-IPv6-Address                  4 octets
ATTRIBUTE   Fortinet-Interface-Name                       5 string
ATTRIBUTE   Fortinet-Access-Profile                       6 string
ATTRIBUTE   Fortinet-SSID                                 7 string
ATTRIBUTE   Fortinet-AP-Name                              8 string
ATTRIBUTE   Fortinet-FAC-Auth-Status                      11 string
ATTRIBUTE   Fortinet-FAC-Token-ID                         12 string
ATTRIBUTE   Fortinet-FAC-Challenge-Code                   15 string
ATTRIBUTE   Fortinet-Webfilter-Category-Allow             16 octets
ATTRIBUTE   Fortinet-Webfilter-Category-Block             17 octets
ATTRIBUTE   Fortinet-Webfilter-Category-Monitor           18 octets
ATTRIBUTE   Fortinet-AppCtrl-Category-Allow               19 octets
ATTRIBUTE   Fortinet-AppCtrl-Category-Block               20 octets
ATTRIBUTE   Fortinet-AppCtrl-Risk-Allow                   21 octets
ATTRIBUTE   Fortinet-AppCtrl-Risk-Block                   22 octets
ATTRIBUTE   Fortinet-WirelessController-Device-MAC        23 ether
ATTRIBUTE   Fortinet-WirelessController-WTP-ID            24 string
ATTRIBUTE   Fortinet-WirelessController-Assoc-Time        25 date
ATTRIBUTE   Fortinet-FortiWAN-AVPair                      26 string
ATTRIBUTE   Fortinet-FDD-Access-Profile                   30 string
ATTRIBUTE   Fortinet-FDD-Trusted-Hosts                    31 string
ATTRIBUTE   Fortinet-FDD-SPP-Name                         32 string
ATTRIBUTE   Fortinet-FDD-Is-System-Admin                  33 string
ATTRIBUTE   Fortinet-FDD-Is-SPP-Admin                     34 string
ATTRIBUTE   Fortinet-FDD-SPP-Policy-Group                 35 string
ATTRIBUTE   Fortinet-FDD-Allow-API-Access                 36 string
ATTRIBUTE   Fortinet-Fpc-User-Role                        40 string
ATTRIBUTE   Fortinet-Tenant-Identification                41 string
ATTRIBUTE   Fortinet-Host-Port-AVPair                     42 string

END-VENDOR Fortinet

Related Articles

 

Technical Tip: Fortinet's RADIUS Dictionary (VSA - vendor-specific attributes), NTRadPing

 

Above stated attributes plays also a key role in the following scenarios:

 

Technical Tip: Authentication, Remote server group match of user group configuration with RADIUS ser...

 

Technical Tip: Remote admin login with Radius selecting admin access account profile