Fortinet black logo

Cookbook

Creating FortiWLC as RADIUS client on the FortiAuthenticator

Copy Link
Copy Doc ID 6afcbdba-0b23-11ea-8977-00505692583a:368233
Download PDF

Creating FortiWLC as RADIUS client on the FortiAuthenticator

To create a RADIUS client:
  1. On the FortiAuthenticator, go to Authentication > RADIUS Service > Clients and create a new client.
  2. Set Client address to IP/Hostname and enter the IP address the FortiWLC will send its RADIUS requests from.

    Set the same Secret that was entered during the RADIUS configuration on the FortiWLC.

To create the RADIUS policy:
  1. Go to Authentication > RADIUS Service > Policies, and create a new policy.
  2. In RADIUS clients, select the FWLC client previously created.
  3. In RADIUS attribute criteria, click Next. No RADIUS attribute criteria need to be specified in this configuration.
  4. In Authentication type, select Password/OTP authentication. If EAP is being used for wireless authentication, enable Accept EAP, along with the desired EAP types.
  5. In Identity source, select the realm for which user authentication is needed.
  6. In Authentication factors, select Verify all configured authentication factors.
  7. Review the RADIUS response, and save the policy.

Creating FortiWLC as RADIUS client on the FortiAuthenticator

To create a RADIUS client:
  1. On the FortiAuthenticator, go to Authentication > RADIUS Service > Clients and create a new client.
  2. Set Client address to IP/Hostname and enter the IP address the FortiWLC will send its RADIUS requests from.

    Set the same Secret that was entered during the RADIUS configuration on the FortiWLC.

To create the RADIUS policy:
  1. Go to Authentication > RADIUS Service > Policies, and create a new policy.
  2. In RADIUS clients, select the FWLC client previously created.
  3. In RADIUS attribute criteria, click Next. No RADIUS attribute criteria need to be specified in this configuration.
  4. In Authentication type, select Password/OTP authentication. If EAP is being used for wireless authentication, enable Accept EAP, along with the desired EAP types.
  5. In Identity source, select the realm for which user authentication is needed.
  6. In Authentication factors, select Verify all configured authentication factors.
  7. Review the RADIUS response, and save the policy.