Description
This article describes how to extract and utilize the FortiNAC MIB file in a Network Monitoring System. This helps monitor the FortiNAC setup itself, like its hardware components, license usage, and the details of clients and managed devices.
Scope
FortiNAC.
Solution
The MIB file can be found and exported from FortiNAC CLI:
execute enter-shell
cd /bsc/campusMgr/ui/runTime/docs/mibs/
tftp -pr FORTINAC-MIB.txt <TFTP server IP>
This file can later be imported into the monitoring system to provide details on the supported OIDs and simplify the configuration process.
Configuring SNMP in FortiNAC.
Allow the SNMP service at the port level. This is done on the management port:
config system interface
edit port1
set mode static
set ip 10.6.2.61/24
set allowaccess http-adminui https-adminui ping radius-auth snmp ssh
In Admin UI, configure the protocol parameters under System -> Settings -> System Communication -> SNMP.
The 'Management Hosts IP' list will be automatically populated with the IPs of the systems that have queried FortiNAC via SNMP.
In order for FortiNAC to accept SNMP GET queries from the Monitoring server, it may require to add that Server as a Pingable device.
FortiNAC may reject SNMP GET queries from devices that are not part of the Network Inventory.
Follow this document: Add or modify a pingable device to add the Monitoring Server as a topology device in FortiNAC.
To verify that the SNMP configurations are working, a query from FortiNAC CLI can be emulated as follows (freeMemory):
execute enter-shell
snmpget -v3 -u gimi -l AuthPriv -a SHA -A 12345678 -x AES -X 12345678 10.6.2.61 .1.3.6.1.4.1.16856.1.4.1.8.0
SNMPv2-SMI::enterprises.16856.1.4.1.8.0 = Gauge32: 2321068
The following elements can be queried and monitored:
| cpuDescription | .1.3.6.1.4.1.16856.1.4.1.1 | Textual description of CPU. |
| cpuCount | .1.3.6.1.4.1.16856.1.4.1.2 | The number of CPUs. |
| cpuCache | .1.3.6.1.4.1.16856.1.4.1.3 | The CPU cache in kilobytes. |
| osVersion | .1.3.6.1.4.1.16856.1.4.1.4 | Textual description of the operating system. |
| databaseVersion | .1.3.6.1.4.1.16856.1.4.1.5 | Textual description of database version. |
| webVersion | .1.3.6.1.4.1.16856.1.4.1.6 | Textual description of web server version. |
| totalMemory | .1.3.6.1.4.1.16856.1.4.1.7 | Total memory (kbytes). |
| freeMemory | .1.3.6.1.4.1.16856.1.4.1.8 | Free memory (kbytes). |
| totalSwap | .1.3.6.1.4.1.16856.1.4.1.9 | Total swap (kbytes). |
| freeSwap | .1.3.6.1.4.1.16856.1.4.1.10 | Free swap (kbytes). |
| totalDisk | .1.3.6.1.4.1.16856.1.4.1.11 | Total disk (kbytes). |
| freeDisk | .1.3.6.1.4.1.16856.1.4.1.12 | Free disk (kbytes). |
| concurrentLicenseCount | .1.3.6.1.4.1.16856.1.4.2.1 | The number of concurrent licenses. |
| concurrentLicensesUsed | .1.3.6.1.4.1.16856.1.4.2.2 | The number of concurrent licenses used. |
| totalClients | .1.3.6.1.4.1.16856.1.4.3.1 | The total number of managed clients in the system. |
| registeredCount | .1.3.6.1.4.1.16856.1.4.3.2 | The total number of registered clients in the system. |
| registeredOnLineCount | .1.3.6.1.4.1.16856.1.4.3.3 | The total number of registered clients online in the system. |
| registeredOffLineCount | .1.3.6.1.4.1.16856.1.4.3.4 | The total number of registered clients offline in the system. |
| rogueCount | .1.3.6.1.4.1.16856.1.4.3.5 | The total number of unregistered clients in the system. |
| rogueOnLineCount | .1.3.6.1.4.1.16856.1.4.3.6 | The total number of unregistered clients online in the system. |
| rogueOffLineCount | .1.3.6.1.4.1.16856.1.4.3.7 | The total number of unregistered clients offline in the system. |
| disabledCount | .1.3.6.1.4.1.16856.1.4.3.8 | The total number of disabled clients in the system. |
| disabledOnLineCount | .1.3.6.1.4.1.16856.1.4.3.9 | The total number of disabled clients online in the system. |
| disabledOffLineCount | .1.3.6.1.4.1.16856.1.4.3.10 | The total number of disabled clients offline in the system. |
| atRiskCount | .1.3.6.1.4.1.16856.1.4.3.11 | The total number of at-risk clients in the system. |
| atRiskOnLineCount | .1.3.6.1.4.1.16856.1.4.3.12 | The total number of at-risk clients online in the system. |
| atRiskOffLineCount | .1.3.6.1.4.1.16856.1.4.3.13 | The total number of at-risk clients offline in the system. |
| userCount | .1.3.6.1.4.1.16856.1.4.3.14 | The total number of managed users in the system. |
| userOnLineCount | .1.3.6.1.4.1.16856.1.4.3.15 | The total number of managed users online in the system. |
| userOffLineCount | .1.3.6.1.4.1.16856.1.4.3.16 | The total number of managed users offline in the system. |
| ipPhoneCount | .1.3.6.1.4.1.16856.1.4.3.17 | The total number of IP Phones in the system. |
| ipPhoneOnLineCount | .1.3.6.1.4.1.16856.1.4.3.18 | The total number of IP Phones online in the system. |
| ipPhoneOffLineCount | .1.3.6.1.4.1.16856.1.4.3.19 | The total number of IP Phones offline in the system. |
| totalDevices | .1.3.6.1.4.1.16856.1.4.4.1 | The total number of managed devices in the system. |
| routerCount | .1.3.6.1.4.1.16856.1.4.4.2 | The total number of routers in the system. |
| routerON | .1.3.6.1.4.1.16856.1.4.4.3 | The total number of routers online in the system. |
| routerOFF | .1.3.6.1.4.1.16856.1.4.4.4 | The total number of routers offline in the system. |
| switchCount | .1.3.6.1.4.1.16856.1.4.4.5 | The total number of wired switches in the system. |
| switchON | .1.3.6.1.4.1.16856.1.4.4.6 | The total number of wired switches online in the system. |
| switchOFF | .1.3.6.1.4.1.16856.1.4.4.7 | The total number of wired switches offline in the system. |
| wswitchCount | .1.3.6.1.4.1.16856.1.4.4.8 | The total number of wireless switches in the system. |
| wswitchON | .1.3.6.1.4.1.16856.1.4.4.9 | The total number of wireless switches online in the system. |
| wswitchOFF | .1.3.6.1.4.1.16856.1.4.4.10 | The total number of wireless switches offline in the system. |
| hubCount | .1.3.6.1.4.1.16856.1.4.4.11 | The total number of hubs in the system. |
| hubON | .1.3.6.1.4.1.16856.1.4.4.12 | The total number of hubs online in the system. |
| hubOFF | .1.3.6.1.4.1.16856.1.4.4.13 | The total number of hubs offline in the system. |
| serverCount | .1.3.6.1.4.1.16856.1.4.4.14 | The total number of servers in the system. |
| serverON | .1.3.6.1.4.1.16856.1.4.4.15 | The total number of servers online in the system. |
| serverOFF | .1.3.6.1.4.1.16856.1.4.4.16 | The total number of servers offline in the system. |
| printerCount | .1.3.6.1.4.1.16856.1.4.4.17 | The total number of printers in the system. |
| printerON | .1.3.6.1.4.1.16856.1.4.4.18 | The total number of printers online in the system. |
| printerOFF | .1.3.6.1.4.1.16856.1.4.4.19 | The total number of printers offline in the system. |
| interfaceCount | .1.3.6.1.4.1.16856.1.4.4.20 | The total number of interfaces in the system. |
| interfaceON | .1.3.6.1.4.1.16856.1.4.4.21 | The total number of interfaces online in the system. |
| interfaceOFF | .1.3.6.1.4.1.16856.1.4.4.22 | The total number of interfaces offline in the system. |
| uplinkCount | .1.3.6.1.4.1.16856.1.4.4.23 | The total number of upstream links in the system. |
| userDefinedUplinkCount | .1.3.6.1.4.1.16856.1.4.4.24 | The total number of user-defined uplinks in the system. |
Note:
To retrieve the value (gauge/counter) for each OID, '.0' should be appended to the OID string.
Related article:
Technical Tip: Useful CLI commands in FortiNAC-OS for troubleshooting
