Security

 View Only
last person joined: 17 hours ago 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

How to terminate session for fortinet wireless user to complete health check

This thread has been viewed 1 times

  • 1.  How to terminate session for fortinet wireless user to complete health check

    Posted Jul 13, 2016 01:50 PM

    Hi

     

    I have a fortinet wireless controller  and want to grant users access per to thier authentication and posture (healthy) check.

    So I created the required services but I stuck in terminate-session action which required in the WEBAUTH (Agent healthcheck) service, as there is no terminate-session action available for fortinet.

     

    So how to force the wireless users to terminate their sessions after the healthy-check 

    (I dont want to use bounce-agent action beacuse it causes the user to connect to other wireless network after the agent bounces).

     

    Mahmoud



  • 2.  RE: How to terminate session for fortinet wireless user to complete health check

    EMPLOYEE
    Posted Jul 13, 2016 01:52 PM
    Does your Fortinet controller support RFC 3576?


  • 3.  RE: How to terminate session for fortinet wireless user to complete health check

    Posted Jul 13, 2016 03:18 PM
    Hi

    I am not sure. Will check for this.
    But what is the procedure in both cases?

    Mahmoud


    Sent from Samsung Mobile


  • 4.  RE: How to terminate session for fortinet wireless user to complete health check

    EMPLOYEE
    Posted Jul 13, 2016 03:32 PM
    If it does, you'll need to find out whether it's a standard DM/CoA format.

    If it doesn't, you'll need to use the agent bounce.


  • 5.  RE: How to terminate session for fortinet wireless user to complete health check

    Posted Jul 13, 2016 04:12 PM
    Hi

    So if it supports CoA, then can I use the RADIUS:IETF attributes to terminate the session?
    As I didnt find such terminate attribute.

    Mahmoud


    Sent from Samsung Mobile


  • 6.  RE: How to terminate session for fortinet wireless user to complete health check

    EMPLOYEE
    Posted Jul 13, 2016 04:13 PM
    You can try using the generic IETF one, however they may require additional
    attributes.