SSL VPN tunnel mode is enabled in the firewall and the radius users are imported to the FortiGate.
So it is necessary to make sure the actual radius user name and the user imported in the Fortigate must be the same, if not we would get' credential or ssl vpn configuration is wrong (-7200)' error.
Check the below-mentioned output.
# config user loca edit "test" <----- Name of the user in firewall. set status enable set type radius
Since the username in firewall and radius is the same authentication is success and two factor worked.
Post entering the Token.It worked.
Now by mistake, if the radius user is saved with a different user name then VPN will not work.
# config user local edit "Test" <----- The name from test to Test has been changed. set status enable set type radius
Trying to connect the VPN but it is not working.
it is because of the case sensitive, and post making the below mentioned changes the VPN is connected.
# config user local edit "Test" set status enable set type radius set username-case-sensitivity <----- To set username-case-sensitivity disable. end
|