Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
165
Views
0
Helpful
3
Replies

ISE integration with Fortigate for Posture wireless endpoint

sandesh-dhuri
Level 1
Level 1

‎05-22-2025 12:20 AM

We are using Cisco ISE as NAC solution and using posture, we have fortiAPs for wireless which are managed through fortigate.

We configured the radius on Fortigate, authentication is happening and posture assessment is working, but COA is not working. We have enabled the COA on fortigate, but fortigate is sending COANAK to ISE.Does anyone faced this problem and got it resolved ?

 

0 Helpful
3 Replies 3

marce1000
Hall of Fame
Hall of Fame

‎05-22-2025 04:43 AM - edited ‎05-22-2025 04:43 AM

 

  - Check if these info's can help youhttps://docs.fortinet.com/document/fortideceptor/5.3.1/administration-guide/894738/integrate-with-cisco-ise

   M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

ahollifield
VIP
VIP

‎05-22-2025 05:00 AM

What is the COANAK reason? It should be in the ISE logs. What NAD profile are you using for the FortiGate? Most likely the CoA message is not formatted correctly with attributes the FortiGate does not understand.

0 Helpful

sandesh-dhuri
Level 1
Level 1
In response to ahollifield

‎05-22-2025 05:09 AM

COANAK reason is nasidentifier-mismatch. we are using Cisco device profile as we have not found anyfortinet device profile and vsa file.

0 Helpful
Customers Also Viewed These Support Documents