Staff

Technical Tip: How to evaluate endpoint compliance in FortiNAC when FortiEDR is disabled

Forum|Forum|1 year ago
December 3, 2024
0 replies
11176 views

Description

This article describes how to scan FortiEDR Windows Collector for Endpoint Compliance in FortiNAC in cases where the FortiEDR collector was disabled via the disable feature from the FortiEDR Central Manager console.

Scope

FortiEDR Windows Collector, FortiNAC.

Solution

If it is required to restrict the Endpoint when FortiEDR is disabled by an Administrator, the following Registry key can be used as Custom Scans in FortiNAC:

Registry Path	HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\FortiEDRWinDriver_x.x.x.x
Name	PersistantConfigPath
Type	REG_SZ
Data	\DosDevices\C:\ProgramData\FortiEDR\Config\Collector\NsloDriverConfig.dat

See this article to add FortiNAC Endpoint Compliance Custom Scans.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded