Description
This article describes how to verify whether or not an unsupported network device can be modeled in Inventory as a Generic SNMP Device. This is a sufficient option for L3 devices that are modeled only to collect ARP table (IP to MAC) information and will not be placed under enforcement. This method may or may not be sufficient for L2 devices that will be enforced. For additional information and a full list of supported standard MIB groups, see Update device mapping in the Administration Guide.
Scope
Version: 8.x, 9.x, F7.x
Solution
Requirements (L3 Devices)
The device must respond to either of the following OIDs:
ipNetToMediaTable (1.3.6.1.2.1.4.22)
atTable (SNMPv2-SMI::mib-2.3.1.1)
This can be verified by performing a snmpwalk (either using the CLI snmpwalk tool or some other machine with SNMP tools).
Commands for FortiNAC or Another Linux Platform
FortiNAC-OS CLI: Type "execute enter-shell" and hit ENTER before entering the below commands.
SNMP version 1 or 2
snmpwalk -v 1 -c <community string> <device ip_address> ipNetToMediaTable
snmpwalk -v 1 -c <community string> <device ip_address> atTable
SNMP version 3:
snmpwalk -v 3 -u <username> -l <AuthPriv or NoAuthPriv> -a <MD5 or SHA> -A <password> -x <DES or AES> -X <password> <device ip_address> ipNetToMediaTable
snmpwalk -v 3 -u <username> -l <AuthPriv or NoAuthPriv> -a <MD5 or SHA> -A <password> -x <DES or AES> -X <password> <device ip_address> atTable
For Generic SNMP Devices, the ipNetToMediaTable is queried first in order to pull ARP table information during a L3 Poll. If there is no response, the address translation table (atTable) is attempted.
Procedure:
1. Right-click the model displaying the ? icon and select Set Device Mapping.
2. In the window that appears, select Model this Device as a Generic SNMP Device.
