Created on 11-26-2018 04:31 PM Edited on 10-17-2024 03:25 AM By Jean-Philippe_P
Description
This article describes the steps needed to identify why MDM users are not registering in FortiNAC.
Scope
FortiNAC, FortiNAC-F.
Solution
Troubleshoot the MDM and user. Contact the MDM vendor for additional assistance.
To investigate and check further details enable the following debugs in FortiNAC cli and verify output after selecting 'Poll Now':
FortiNAC (CentOS).
logs
nacdebug -name MdmManager true
Depending on the MDM vendor enable additionally one of the following:
nacdebug -name FortinetEMSServer true
nacdebug -name AirWatchServer true
nacdebug -name XenMobileServer true
nacdebug -name GoogleGSuiteServer true
nacdebug -name JamfServer true
nacdebug -name Maas360Server true
nacdebug -name MSInTuneServer true
nacdebug -name MobileIronServer true
nacdebug -name NozomiServer true
tf output.master
FortiNAC-F (NACOS).
diagnose debug plugin enable MdmManager
diagnose debug plugin enable FortinetEMSServer <-- Replace 'FortinetEMSServer' with any other plugin as above depending on MDM vendor.
diagnose tail -F output.master
Disable debugging:
FortiNAC (CentOS).
logs
nacdebug -name MdmManager false <-- Set plugin to 'false' for all other enabled plugins.
FortiNAC-F (NACOS).
diagnose debug plugin disable MdmManager <-- Set plugin to 'disabled' for all other enabled plugins.
Only some devices registering through MDM are affected.
The host record shows online and is registered but the device remains isolated.
Related articles:
Technical Note: Hosts imported from Airwatch is less than expected
Technical Tip: Airwatch MDM Agent fails to authenticate in isolation
Technical Tip: Certificate path error when polling Airwatch
Technical Tip: Airwatch poll fails with 429 error code
Technical Tip: AirWatch MDM poll fails when configured to retrieve application data
Technical Note: Gather logs for debugging and troubleshooting
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.