Help
FortiNAC
NOTE: FortiNAC is now named FortiNAC-F. For post-9.4 articles, see FortiNAC-F. FortiNAC is a zero-trust network access solution that provides users with enhanced visibility into the Internet of Things (IoT) devices on their enterprise networks.
Hatibi
Staff
Staff

Created on ‎08-15-2023 03:00 AM

Article Id 268861

Technical Tip: Schedule Resync Interfaces for multiple Inventory devices

Description

 

This article describes the function of the 'Resync Interfaces' option in FortiNAC and how to create a schedule to run it periodically.

 

Scope

 

FortiNAC.

 

Solution

 

The 'Resync Interfaces' option will have FortiNAC read and update port status information from the modeled device in inventory. This provides accurate representation of a device's interfaces in FortiNAC.

 

In many cases, Network administrators may perform various changes in the network infrastructure such as creating new SSIDs, performing link aggregation on specific ports which will be incoherent to the current representation that FortiNAC may have for that device.

In such cases, manually performing a resync of interfaces will update the changes and reflect them in FortiNAC.

 

However, there are separate teams/admins in many environments who manage FortiNAC and specific network devices changes. The changes applied on the network might not be properly tracked, leading to conflicts with FortiNAC operation on the specific ports during terms of polling or enforcing control.

 

Configuration

 

  1. Put the required devices in the 'Device Interface Status' if they were not automatically added there after discovery or if they were manually removed for any reason.

    Go to Inventory in the GUI, then select the device and open the context menu. Select 'Group membership' and enable the 'Device Interface status'.

 

Device_interface_group.png

 

When the devices are part of the 'Device Interface status', this group can be leveraged in conjunction with the task scheduler to periodically update the interface status for each device in the group.

 

  1. Verify the Devices which are members of this group.

 

Go to System -> Groups -> 'Device Interface status'.

 

Member_group.png

 

  1. Create a Task to Resync Interfaces every 10 minutes.

    Normally, this will be set to occur every day or every seven days in order to prevent the generation of unnecessary traffic, depending on the environment and number of devices.

    Go to System -> Scheduler and select 'Add' to create a new task.

    Make sure the 'Device Interface Status' group is selected. Select 'Update' in the Next scheduled Time to have it automatically populated depending on the set 'Repetition Rate'.

 

Resync_inter_sched.png

 

  1. Verify the Resync has been performed.

    Go to Logs -> Event & Alarms -> Events. Select 'update' after setting the needed filter to be presented with the events.

 

Resync_in_events.png

Related documents:

 

Related articles:

592
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.