Skip to main content
vincenzo
vincenzo
Explorer
January 29, 2025
Solved

Fortinac fortiview missing info

  • January 29, 2025
  • 2 replies
  • 1718 views

Hi,

I'm working on new Fnac 7.6 deployment.

I need only visibility functions, in particular I need to associate user/host/ip address and see all in fortiview.

It is necessary the persistent agent or I can retrieve the information in another manner ?

Also I don't understand why in fortiview dashboard I can't see the ip address, only mac-address, but in adapter window I see the ip address resolved by mac-address.

In inventory I set L2 polling and L3 polling on core switch.

Thank you

 

Vincenzzo

 

Best answer by AEK

Hi

I think FortiNAC can detect the hostname only in the following cases:

  • DHCP request
  • Persistent agent
  • Dissolvable agent

Probably there a chance that rDNS can also help. FortiGate can do that, but I don't know if FortiNAC can do it, unless if FNAC can get the info from FGT.

2 replies

AEK
SuperUser
AEK
SuperUser
January 29, 2025

Hi Vincenzo

If host doesn't run PA, you can collect the required info as follows:

  • IP: Via L3 polling from firewall or router
  • User: From NAC portal on user registration/authentication
  • Host: From DHCP query (if I'm not wrong)

Also if you have FortiGate then NAC can collect much info from there.

AEK
    ebilcari
    Staff
    ebilcari
    Staff
    January 30, 2025

    Basically FortiView will use the host/adapter information extracted from Endpoint Fingerprints. This will be populated depending on the Source that have given this information. There are some sources that don't provide IP information like FortiGuard or Vendor OUI, also if partial information is received like DHCP discover only:

    endfinger.PNG

    The recommended way to have all the hosts information is to use Persistent Agent but other sources can also provide the IP information if correctly configured.

    Emirjon
      vincenzo
      vincenzoAuthor
      Explorer
      January 30, 2025

      Hi,

      I solved the ip and host resolution enabling dhcp helper address, now I need to understand if is mandatory to use persistent agent to associate user to host or there is alternative methods.

      Regarding the helper address implementation, it's working for clients managed via dhcp, but for the host with static ip?

      Thank you all for the reply

       

      Vincenzo

       

      AEK
      SuperUser
      AEKAnswer
      SuperUser
      January 30, 2025

      Hi

      I think FortiNAC can detect the hostname only in the following cases:

      • DHCP request
      • Persistent agent
      • Dissolvable agent

      Probably there a chance that rDNS can also help. FortiGate can do that, but I don't know if FortiNAC can do it, unless if FNAC can get the info from FGT.

      AEK
        Terms & ConditionsAccessibility statement