Fortinet black logo

Cambium AP Wireless Integration

Home FortiNAC-F 7.2.0 Cambium AP Wireless Integration
7.2.0
7.4.0
7.2.0

Debugging

Debugging

(FNC-CA) FortiNAC Commands

Use the following KB article to gather the appropriate logs using the debugs below.

Gather logs for debugging and troubleshooting

Note: Debugs disable automatically upon restart of FortiNAC control and management processes.

Function

Syntax

Log File

FortiNAC

Server

(Proxy

RADIUS)

nacdebug –name RadiusManager true

/bsc/logs/output.master

FortiNAC Server

(Local RADIUS)*

nacdebug –name RadiusAccess true

/bsc/logs/output.master

RADIUS Service

(Local RADIUS)

radiusd -X -l /var/log/radius/radius.log

Stop logging: Ctrl-C

/var/log/radius/radius.log

Device Interface/VLAN read debug

SSH/Telnet CLI activity

Enable:

Device -ip <DeviceIP> -setAttr -name DEBUG -value "ForwardingInterface TelnetServer"

Disable:

Device -ip <DeviceIP> -delAttr -name DEBUG -value "ForwardingInterface TelnetServer"

/bsc/logs/output.master

L2 related activity

nacdebug –name BridgeManager true

/bsc/logs/output.master

SNMP activity

nacdebug –name SnmpV1 true

/bsc/logs/output.master

Vendor specific debugging

nacdebug –name CambiumAP true

/bsc/logs/output.master

Disable debug

nacdebug –name <debug name> false

N/A

*Logging for a given MAC Address:
nacdebug -logger 'yams.RadiusAccess.RadiusAccessEngine.00:11:22:33:44:55' -level FINEST

Disable:

nacdebug -logger 'yams.RadiusAccess.RadiusAccessEngine.00:11:22:33:44:55'

Other Tools

Send a RADIUS Disconnect (WLC C9800 only):

SendCoA -ip <devip> -mac <clientmac> -dis

Example:

SendCoA -ip 10.1.0.25 -mac 00:1B:77:11:CE:2F -dis

Previous
Next

Debugging

(FNC-CA) FortiNAC Commands

Use the following KB article to gather the appropriate logs using the debugs below.

Gather logs for debugging and troubleshooting

Note: Debugs disable automatically upon restart of FortiNAC control and management processes.

Function

Syntax

Log File

FortiNAC

Server

(Proxy

RADIUS)

nacdebug –name RadiusManager true

/bsc/logs/output.master

FortiNAC Server

(Local RADIUS)*

nacdebug –name RadiusAccess true

/bsc/logs/output.master

RADIUS Service

(Local RADIUS)

radiusd -X -l /var/log/radius/radius.log

Stop logging: Ctrl-C

/var/log/radius/radius.log

Device Interface/VLAN read debug

SSH/Telnet CLI activity

Enable:

Device -ip <DeviceIP> -setAttr -name DEBUG -value "ForwardingInterface TelnetServer"

Disable:

Device -ip <DeviceIP> -delAttr -name DEBUG -value "ForwardingInterface TelnetServer"

/bsc/logs/output.master

L2 related activity

nacdebug –name BridgeManager true

/bsc/logs/output.master

SNMP activity

nacdebug –name SnmpV1 true

/bsc/logs/output.master

Vendor specific debugging

nacdebug –name CambiumAP true

/bsc/logs/output.master

Disable debug

nacdebug –name <debug name> false

N/A

*Logging for a given MAC Address:
nacdebug -logger 'yams.RadiusAccess.RadiusAccessEngine.00:11:22:33:44:55' -level FINEST

Disable:

nacdebug -logger 'yams.RadiusAccess.RadiusAccessEngine.00:11:22:33:44:55'

Other Tools

Send a RADIUS Disconnect (WLC C9800 only):

SendCoA -ip <devip> -mac <clientmac> -dis

Example:

SendCoA -ip 10.1.0.25 -mac 00:1B:77:11:CE:2F -dis

Previous
Next