Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
IvanYupanqui
New Contributor

Created on ‎03-23-2023 09:29 AM

Fortinac v9.4 MultiSessions Limit dot1x

Hi Good morning my name is Ivan,

I have a Fortinac v9.4 appliances which is running dot1x peap services using proxy mode (FortiAuthenC proxy radius server). Maybe someone might help me:

I need to limit concurrent session  regardless context connection (wired/wifi). In another words, Just 1 user can access to wired/wifi with 1 PC windows. If the same user will try to connect using another Pc windows, Fortinac should block the connection without any portal without redirect to isolation.

 

I was trying using Allowed host but this not working. The concept is different. 

 

Is that possible to do on Fortinac?

Thanks you so much for your answer.

Best regards. 

1119
0 Kudos
3 REPLIES 3
Anthony_E
Community Manager
Community Manager

Created on ‎03-26-2023 09:38 PM

Hello Ivan,


Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.


Thanks,

Anthony-Fortinet Community Team.
1092
0 Kudos
Anthony_E
Community Manager
Community Manager

Created on ‎03-28-2023 10:24 PM

Hello Ivan,

 

We are still looking for someone to help you.

We will come back to you ASAP.


Regards.

Anthony-Fortinet Community Team.
1075
0 Kudos
ebilcari
Staff
Staff

Created on ‎04-25-2023 02:31 AM

The allowed hosts configuration will limit the number of hosts a user can register. If the host is not registered it will be isolated and not able to access the network (this will not affect the already registered hosts for that user). Same attribute can be set in a user level.

more information can be found here: https://docs.fortinet.com/document/fortinac/9.4.0/administration-guide/552799/allowed-hosts and here: https://docs.fortinet.com/document/fortinac/9.4.0/administration-guide/183321/user-properties

 

Another option should be to check on FAC if it's possible to limit the concurrent RADIUS session for a single user and return RADIUS Rejects in case of other tries from the same user that already have a running session.

- Emirjon
If you have found a solution, please like and accept it to make it easily accessible for others.
1024
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.