Fortinet black logo

CLI reference

Home FortiNDR 7.0.3 CLI reference
7.0.3
7.4.3
7.4.2
7.4.1
7.4.0
7.2.3
7.2.2
7.2.1
7.2.0
7.1.0
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0

config profile authentication radius

config profile authentication radius

Use this command to configure FortiAI to connect to an external RADIUS server to authenticate FortiAI Users.

Syntax

config profile authentication radius
    edit <profile_name>
        set auth-prot {auto | chap | mschap | mschap2 | pap}
        set nas-ip <ip_addr>
        set port <port_int>
        set secret <password_str>
        set send-domain {enable | disable}
        set server {<fqdn_str> | <host_ipv4>}
    end

Variable

Description

Default

server {<fqdn_str> | <host_ipv4>}

The IP address or FQDN of the POP3 server.

auth-prot {auto | chap | mschap | mschap2 | pap}

The authentication method for the RADIUS server.

auto

nas-ip <ip_addr>

The NAS IP address and the Called Station ID. If you do not enter an IP address, FortiNDR uses the IP address that the FortiAI interface uses to communicate with the RADIUS server.

For information about RADIUS attribute 31, see Microsoft Vendor-specific RADIUS Attributes.

0.0.0.0

port <port_int>

If the RADIUS server listens on a nonstandard port number, enter the port number of the RADIUS server.

The standard port number for RADIUS is 1812.

1812

secret <password_str>

The password of the RADIUS server.

send-domain {enable | disable}

Enable if the RADIUS server requires both the user name and the domain when authenticating.

server {<fqdn_str> | <host_ipv4>}

The IP address or FQDN of the RADIUS server.

Previous
Next

config profile authentication radius

Use this command to configure FortiAI to connect to an external RADIUS server to authenticate FortiAI Users.

Syntax

config profile authentication radius
    edit <profile_name>
        set auth-prot {auto | chap | mschap | mschap2 | pap}
        set nas-ip <ip_addr>
        set port <port_int>
        set secret <password_str>
        set send-domain {enable | disable}
        set server {<fqdn_str> | <host_ipv4>}
    end

Variable

Description

Default

server {<fqdn_str> | <host_ipv4>}

The IP address or FQDN of the POP3 server.

auth-prot {auto | chap | mschap | mschap2 | pap}

The authentication method for the RADIUS server.

auto

nas-ip <ip_addr>

The NAS IP address and the Called Station ID. If you do not enter an IP address, FortiNDR uses the IP address that the FortiAI interface uses to communicate with the RADIUS server.

For information about RADIUS attribute 31, see Microsoft Vendor-specific RADIUS Attributes.

0.0.0.0

port <port_int>

If the RADIUS server listens on a nonstandard port number, enter the port number of the RADIUS server.

The standard port number for RADIUS is 1812.

1812

secret <password_str>

The password of the RADIUS server.

send-domain {enable | disable}

Enable if the RADIUS server requires both the user name and the domain when authenticating.

server {<fqdn_str> | <host_ipv4>}

The IP address or FQDN of the RADIUS server.

Previous
Next