Fnbam_denied [Windows Top]

| Field | Value | |--------|-------| | | fnbam_denied | | Timestamp | 2026-04-14T08:22:17Z | | User ID | jdoe@company.com | | Session ID | sess_9f3k2d1a | | Source IP | 192.168.12.45 (Corporate LAN) | | Resource Attempted | /api/v1/fnbam/mandate/approve/12345 | | Required Permission | fnbam.mandate.approve | | User’s Effective Role | Finance Analyst (Missing: Finance Approver role) | | User Agent | Mozilla/5.0 (Windows NT 10.0; Win64; x64) Chrome/123.0.0.0 |

LDAP error 49 (invalid credentials) or an expired user account. fnbam_denied

Kill the fnbamd process to reset it, or increase the remote authentication timeout: | Field | Value | |--------|-------| | |

IR-2026-04-14-001 Date of Event: 2026-04-14 Report Generated: 2026-04-14 10:30 AM (UTC) Severity: Medium (Access Control Violation) fnbam_denied

✅ Resolved (User educated; mandate approved by authorized role bsmith at 2026-04-14 09:45 UTC)

If you are a user encountering this error, the following steps can help resolve it:

: The user authenticated successfully against a backend (like RADIUS or LDAP), but they do not belong to the specific user group allowed in the FortiGate policy.