Fortinet Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
kazana
New Contributor

How to Dynamic Vlan Assignment

Hey guys,
I'm trying to "Dynamic Vlan Assingment" on the fortiswitch I'm managing on Fortigate, but I got everything mixed up. Do I do it in the "Dynamic Port Policy" tab or do I do it in the "Nac Policy" tab?

Can you share a source on how to do it?

1 REPLY 1
sachitdas_FTNT

Hi.

To configure 802.1x authentication, you need to go to FortiSwitch Port Policies -> Create Security Policies. Page 140
https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/a5cb2173-7e2e-11ec-a0d0-fa163e...

 

This is an old article, but this might help you:- https://community.fortinet.com/t5/FortiSwitch/Troubleshooting-Tip-Configure-and-troubleshoot-802-1x/...

 

For dynamic vlan, you need to configure below radius return attributes:

  • Tunnel-Private-Group-Id—VLAN ID or name (10)
  • Tunnel-Medium-Type—IEEE-802 (6)
  • Tunnel-Type—VLAN (13)

https://docs.fortinet.com/document/fortiswitch/7.0.4/administration-guide/110505/dynamic-vlan-assign...

 

Regards,
Sachit Das
ETAC Engineer
Wifi-Switching – International Support