FortiNAC
NOTE: FortiNAC is now named FortiNAC-F. For post-9.4 articles, see FortiNAC-F. FortiNAC is a zero-trust network access solution that provides users with enhanced visibility into the Internet of Things (IoT) devices on their enterprise networks.
amacchiaverna
Article Id 190165

Description

This article describes how to acquire a new refresh key for the Intune Connector should it expire. 
The Refresh Token is valid for 90 days as issued by the Intune service.
 
***Note: The Refresh token only expires after 90 days if it sits idle for that period.  If normally scheduled polling occurs, then the 90 timer should not be an issue***
 
It will get refreshed/generated with this log-in. 
It is used to validate polls and queries to the external Intune service.
 
This article also outlines the proper steps to get the initial Refresh Token as there are the same when used in conjunction with the document 'Third Party MDM Device Integration found' at:


Solution

Intune Connection can be found in the following location:
 
Go to Network ->Service Connectors -> MDM Servers.
 
 
 
 
1) Verify via documentation or Intune details that the Name, Identifier, Application ID, and Access Key are input correctly and have not changed.  
2) Select 'Authenticate' with Azure AD.
3) Ensure that the redirect URL in Intune is set to the address in the browser address bar.
 
 
 
 
- Make note of the hostname in use and ensure that it matches the FQDN as set in the FortiNAC.  
See the Dashboard under System Summary and 'Host Name'.  
If it does not match what is in the address bar, change it.  Intune will not accept conical naming and will throw an error in the next step.
 
4) A popup with a login to Intune will come up after selecting Authenticate with Azure AD.  Enter the same credentials used to create the access key or a Global Admin account.
5) The popup will proceed the same page, do not close this page yet.
6) The Refresh Token will not populate/update until 'OK' is selected on the 'Edit Service Connector' page:
 
 
 
 
7) The new Refresh token should now appear.

 

Contributors