Skip to main content
scitlak
Staff
scitlak
Staff
September 26, 2024

Technical Tip: How to use LDAP Nested Security Groups in FortiNAC

  • September 26, 2024
  • 0 replies
  • 1131 views
Description This article describes how to configure FortiNAC to use LDAP Nested Security Groups in FortiNAC.
Scope FortiNAC, FortiNAC-F.
Solution
  1. Configure Nested Groups in LDAP and assign one LDAP user as a member of a subgroup.


26.09.2024_10.13.25_REC.png

 26.09.2024_10.15.06_REC.png

 

  1. Under System -> Settings -> Authentication -> LDAP, select both groups and sync the directory.


26.09.2024_10.16.38_REC.png

 

  1. After directory sync, both groups will appear under the Group menu as nested, shown below.

26.09.2024_10.20.32_REC.png 

  1. When the test 1 user logs on to a host, the host will be a member of the NAC-Test group and of course parent group.

    26.09.2024_10.22.52_REC.png

  2. When a User Host Profile is configured with Criteria Parent Group, the host will match the User Host Profile.


26.09.2024_10.25.02_REC.png

 26.09.2024_10.25.41_REC.png
Terms & ConditionsAccessibility statement