How to Dynamic Vlan Assignment

Question

Hey guys,I'm trying to "Dynamic Vlan Assingment" on the fortiswitch I'm managing on Fortigate, but I got everything mixed up. Do I do it in the "Dynamic Port Policy" tab or do I do it in the "Nac Policy" tab?Can you share a source on how to do it?

sachitdas_FTNT · Answer

Hi.

To configure 802.1x authentication, you need to go to FortiSwitch Port Policies -> Create Security Policies. Page 140
https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/a5cb2173-7e2e-11ec-a0d0-fa163e15d75b/FortiSwitch-7.0.4-FortiSwitch_Devices_Managed_by_FortiOS_7.0.pdf

This is an old article, but this might help you:- https://community.fortinet.com/t5/FortiSwitch/Troubleshooting-Tip-Configure-and-troubleshoot-802-1x/ta-p/194605

For dynamic vlan, you need to configure below radius return attributes:

Tunnel-Private-Group-Id—VLAN ID or name (10)
Tunnel-Medium-Type—IEEE-802 (6)
Tunnel-Type—VLAN (13)

https://docs.fortinet.com/document/fortiswitch/7.0.4/administration-guide/110505/dynamic-vlan-assignment

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded