Technical Tip: Disabled wireless hosts not isolated
Description
This article describes a wireless Host marked as disabled but still able to connect to the production network.
Scope
FortiNAC.
Solution
Ensure the Dead-End role/VLAN is configured in the AP model and the state is enforced.
- In the Administration UI, navigate to Network -> Inventory.
- Select on the Controller/AP Mode.
- Select the Model Configuration tab or select on the SSIDs tab, right click on the applicable SSID and select SSID Configuration.
- Set state for Dead End to Enforce, and Access Value to the role/VLAN designated for Dead-End isolation.
- Save.
Related articles: