Help
FortiNAC
NOTE: FortiNAC is now named FortiNAC-F. For post-9.4 articles, see FortiNAC-F. FortiNAC is a zero-trust network access solution that provides users with enhanced visibility into the Internet of Things (IoT) devices on their enterprise networks.
FortiKoala
Staff
Staff

Created on ‎09-28-2018 06:24 AM Edited on ‎07-23-2025 05:50 AM By Moderator

Article Id 191456

Technical Tip: Add Allowed Domains using the Administration UI

Description

 

This article describes the use of Allowed Domains for isolated hosts. When a device is connected to an isolation VLAN (for example, Registration, Quarantine, DeadEnd), FortiNAC acts as the DNS server. Upon receipt of a DNS request from the isolated host, FortiNAC returns the IP address of the isolation interface unless the domain is listed in the Allowed Domains page. If a request for a domain listed in the Allowed Domains page is received, FortiNAC sends a request to the customer's DNS server for resolution.

To provide appropriate IP resolution to isolated devices for completing actions such as updating AV/AS programs and SSL certificate authentication, this list should be updated as necessary. Refer to the FortiNAC Cookbook Domains to add to the Allowed Domains List for an updated list of these domains. 


Scope

 

FortiNAC.

 

Solution

 

To add domains to the Allowed Domains page:
  1. Log in to the FortiNAC UI.
  2. Navigate to System -> Settings -> Control -> Allowed Domains.
  3. Select 'Add Domain' to add a new domain.
  4. Select 'Save Settings' to save any edits.
Labels:
2332
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.