Creating a RADIUS policy

6.3.0

Copy Link

Copy Doc ID 23809264-eafe-11eb-97f7-00505692583a:926059

Download PDF

A RADIUS policy must be configured in order to allow RADIUS authentication for the selected client.

Go to Authentication > RADIUS Service > Policies, and click Create New.
Under RADIUS clients, configure the following, and click Next.
1. Policy name: Enter a name for this policy, for example: FGT-Computer-TLS.
2. RADIUS clients: Add the previously configured FortiGate RADIUS client to the Chosen RADIUS Clients section.
Under RADIUS attribute criteria, click Next.
Under Authentication type, choose Client Certificates (EAP-TLS), and click Next.
Under Identity source, configure the following, and click Next.
1. Username format: Select your preferred username format, for example: realm\username.
2. Realms: In the Realms table, select your AD realm.
  You can additionally apply a group filter if required.
Under Authentication factors, click Next.
Under RADIUS response, click Save and exit.

A RADIUS policy must be configured in order to allow RADIUS authentication for the selected client.

Go to Authentication > RADIUS Service > Policies, and click Create New.
Under RADIUS clients, configure the following, and click Next.
1. Policy name: Enter a name for this policy, for example: FGT-Computer-TLS.
2. RADIUS clients: Add the previously configured FortiGate RADIUS client to the Chosen RADIUS Clients section.
Under RADIUS attribute criteria, click Next.
Under Authentication type, choose Client Certificates (EAP-TLS), and click Next.
Under Identity source, configure the following, and click Next.
1. Username format: Select your preferred username format, for example: realm\username.
2. Realms: In the Realms table, select your AD realm.
  You can additionally apply a group filter if required.
Under Authentication factors, click Next.
Under RADIUS response, click Save and exit.