Hi,
I am using a FortiNAC-CA 7.2.4 (FortiNAC-OS) with a basic FortiNAC license.
Network Infos:
The FortiNAC is connected via cable to a switch and terminates on a FortiGate through port6 (0.0.0.0/0) with a VLAN stub and VLAN Isolation.
I have configured port1 for MGMT (Layer 3) and port2 in L3 Isolation mode, with an IP on the VLAN stub and a Range Scope for the VLAN Isolation.
The FortiGate acts as a DHCP relay towards the IPs of the FortiNAC (both port1 and port2).
FortiNAC infos:
I created two groups (MAB_VLAN2 and MAB_VLAN3) and two roles (ROLE_VLAN2 and ROLE_VLAN3). I then set up user configurations with the following logic:
I am using a test switch and a test PC, and from manual testing, it seems everything works fine.
Issues:
I’m facing two issues for which I require assistance:
I have disabled all Device Profiling rules, and there are no registered hosts except for about ten rogue hosts that are automatically discovered by the test switch.
Could you please provide assistance?
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Yes correct, the BASE license doesn't offer support for Captive Portal and guest management. This were the old license options/features:
Lately the BASE license is removed and now only PLUS and PRO are used (page 10 on DS). You can try to download again the same license from the customer portal or contact your local sales representative for more information.
Yes correct, the BASE license doesn't offer support for Captive Portal and guest management. This were the old license options/features:
Lately the BASE license is removed and now only PLUS and PRO are used (page 10 on DS). You can try to download again the same license from the customer portal or contact your local sales representative for more information.
I also notice there is no PA in base license.
I wonder which customer profile may acquire a base license.
Hi, and thanks for the information! I’ve been provided with the following licenses, which I’ve registered on the portal:
The FortiNAC I have is physical and it’s the 700F model.
I registered the FortiNAC's serial number on the portal and uploaded all three licenses to the device. I downloaded both the FortiNAC License Key File (.lic) and the Network Sentry Key File (.lic), but I can only upload the first one, as the second one gives me an error.
Even though I’ve uploaded the license file, the system remains in BASE mode without access to the portal, etc.
Do I need to deploy a VM that acts as a Manager?
I’m not sure what to do next. Thanks a lot for the help!
The license file downloaded in 'FortiNAC License File Download' should be enough to license the appliance, the 'Network Sentry Key File' is not used any longer. The manager is used in multipod setups that helps share the license between the nodes but it's not mandatory to have it.
Please make sure to use the MAC address of the first port when registering the license in the customer portal.
If the license are subscription based make sure that the appliance has internet access and run a license poll:
# execute enter-shell
$ entitlementstool -poll
Thank you, after executing the commands you provided, the license has also changed in the settings screen.
After restarting the FortiNAC, the Portals menu appeared.
Thank you all!
Thank you for your feedback, happy to help!
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1633 | |
1063 | |
751 | |
443 | |
210 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.