Refer to the exhibits. A company has multiple FortiGate devices deployed and wants to centralize user authentication and authorization. The administrator decides to use FortiAuthenticator to convert RSSO messages to FSSO, allowing all FortiGate devices to receive user authentication updates. After configuring FortiAuthenticator to receive RADIUS accounting messages, users can authenticate, but FortiGate does not enforce the correct policies based on user groups. Upon investigation, the administrator discovers that FortiAuthenticator is receiving RADIUS accounting messages from the RADIUS server and successfully queries LDAP for user group information. But, FSSO updates are not being sent to FortiGate devices and FortiGate firewall policies based on FSSO user groups are not being applied. What is the most likely reason FortiGate is not receiving FSSO updates? (Choose one answer)

• A. The FortiAuthenticator interface is not enabled to receive RADIUS accounting messages.
• B. FortiAuthenticator is missing the FSSO user group attribute in the configuration.
• C. The RADIUS Username and Client IPv4 attributes are not defined on FortiAuthenticator.
• D. The LDAP server is not configured to retrieve group memberships for RSSO users.

Correct Answer: C

Brave-Dump Clients Votes