Description
This article describes the variables that can be used in a Network Access Policy Flex CLI (%port% %vlan% %ip% %mac%) is dependent upon whether the CLI configuration is set to Port Based or Host Based in the Model Configuration of the switch.
Scope
FortiNAC.
Solution
To verify:
- Log in to the Administration UI and navigate to Network Devices -> Inventory.
- 'Right-click' on the model and select Model Configuration.
The following table shows what variables can be used for each type (Port Based vs Host Based):
CLI Configuration Valid Variable Options
Substitution Data Port Based DO commands Port based UNDO commands Host Based DO commands Host Based UNDO commands
%port% Yes Yes Yes No
%vlan% Yes Yes Yes No
%ip% No No Yes Yes
%mac% No No Yes Yes
Based on the above chart, a Flex CLI that is needed to do the following command would require that the switch's Model Configuration be set for Host Based CLI
because it uses all 4 variables in the DO section (%port% %vlan% %ip% %mac%).
config t
ip source binding %macXXXX.XXXX.XXXX% vlan %vlan% %ip% interface %port%
end
wr mem
For more information refer to the CLI Configuration from the Administration guide.
