Fortinet black logo

FortiSwitch Integration

Home FortiNAC-F 7.2.0 FortiSwitch Integration
7.2.0
7.4.0
7.2.0

Debugging

Debugging

FortiGate Commands

Function

Syntax

Enable debugging feature

diagnose debug enable

802.1X

diagnose debug app eap_proxy 31 (EAP deamon)

RADIUS Disconnect

diag debug app radius-das 8

Security Fabric Communication

diagnose debug authd fsso list

RADIUS sessions (Link Mode)

diagnose switch-controller switch-info 802.1X

Disable debugging feature

diagnose debug disable

RADIUS sessions (Link Mode) example response:

Client with MAC 00:0c:29:d4:4f:3c successfully authenticated using MAC-based 802.1x connecting to switch S248EPTF1800XXXX port 6, and was assigned VLAN 1.

Managed Switch : S248EPTF1800XXXX

port6 : Mode: mac-based (mac-by-pass disable)

Link: Link up

Port State: authorized: ( )

EAP pass-through mode : Enable

Native Vlan : 1

Allowed Vlan list: 1,4093

Untagged Vlan list: 1,4093

Guest VLAN :

Auth-Fail Vlan :

Switch sessions 1/240, Local port sessions:1/20

Client MAC Type Vlan Dynamic-Vlan

00:0c:29:d4:4f:3c 802.1x 1 0

Sessions info:

00:0c:29:d4:4f:3c

Type=802.1x,MD5,state=AUTHENTICATED,etime=6,eap_cnt=3 params:reAuth=3600

Previous
Next

Debugging

FortiGate Commands

Function

Syntax

Enable debugging feature

diagnose debug enable

802.1X

diagnose debug app eap_proxy 31 (EAP deamon)

RADIUS Disconnect

diag debug app radius-das 8

Security Fabric Communication

diagnose debug authd fsso list

RADIUS sessions (Link Mode)

diagnose switch-controller switch-info 802.1X

Disable debugging feature

diagnose debug disable

RADIUS sessions (Link Mode) example response:

Client with MAC 00:0c:29:d4:4f:3c successfully authenticated using MAC-based 802.1x connecting to switch S248EPTF1800XXXX port 6, and was assigned VLAN 1.

Managed Switch : S248EPTF1800XXXX

port6 : Mode: mac-based (mac-by-pass disable)

Link: Link up

Port State: authorized: ( )

EAP pass-through mode : Enable

Native Vlan : 1

Allowed Vlan list: 1,4093

Untagged Vlan list: 1,4093

Guest VLAN :

Auth-Fail Vlan :

Switch sessions 1/240, Local port sessions:1/20

Client MAC Type Vlan Dynamic-Vlan

00:0c:29:d4:4f:3c 802.1x 1 0

Sessions info:

00:0c:29:d4:4f:3c

Type=802.1x,MD5,state=AUTHENTICATED,etime=6,eap_cnt=3 params:reAuth=3600

Previous
Next