PurposeThis article explains how to connect to a FortiAP from the Wireless Controller using telnet.
ScopeThe FortiAP IP address is reachable by the Wireless Controller.
Expectations, RequirementsOnce the FortiAP is Discovered by the Wireless Controller and in the state "Waiting for Authorization", the FortiAP can be telneted from the Wireless Controller.
Once the FortiAP is in the state "Authorized", telnet to the FortiAP might not work. It will depend on how your Wireless Controller and your FortiAP are configured.
The following parameters must be checked on the Wireless Controller and on the FortiAP:
FGT # config wireless-controller wtp
FGT (wtp) # edit FAP
FGT (FAP) # get
...
login-enable : default ---> default configuration on the Wireless Controller
...
FAP # cfg -s
...
TELNET_ALLOW:=0 ---> default configuration on the FortiAP
...
Here are the definitions of the login-enable parameter:
login-enable {default | enable | disable} : enable or disable AP telnet login.
Set to default to control the AP telnet login capability with the TELNET_ALLOW setting on the AP unit
FGT (FAP) # set login-enable
default Use TELNET_ALLOW setting on WTP
disable Disable wtp telnet login
enable Enable wtp telnet login
For troubleshooting purposes, it might be useful to enable telnet to the FortiAP. For better control, it is recommended to enable login-enable parameter on the Wireless Controller.
FGT # config wireless-controller wtp
edit "FAP"
set location "N/A"
set wtp-profile "test"
set login-enable enable
next
end
Now telnet from the Wireless Controller to the FortiAP using the exec telnet function will work:
FGT # execute telnet 10.10.10.65
FAP login: admin
BusyBox v1.15.0 (2012-12-10 16:39:04 PST) built-in shell (ash)
Enter 'help' for a list of built-in commands.