Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Partisan44
New Contributor

Created on ‎10-28-2024 05:54 AM

FORTINAC - PUT REGISTERD HOSTS IN ISOOLATION VLAN

Hi 

 

I want to achieve this :

When a registered host is connected ,its first put in isolation vlan until it passes endpoint compliance ,is this possible? I have set the default vlan as isolation ,however when a registered host connects ,its moved from isolation -> production then isolated.

Thanks 

Labels:
61
0 Kudos
3 REPLIES 3
ebilcari
Staff
Staff

Created on ‎10-28-2024 06:13 AM

That will depend on the method used for registration. In order to directly isolate (quarantine VLAN) before registering the host, the registration should be handled by the Persistent Agent. A endpoint compliance and a dedicated Scan should be created with the following condition:

scan before.PNG

- Emirjon
If you have found a solution, please like and accept it to make it easily accessible for others.
52
Partisan44
New Contributor
In response to ebilcari

Created on ‎10-28-2024 06:21 AM

Hi 

Thats there 

 

Scan.JPG

42
0 Kudos
ebilcari
Staff
Staff
In response to Partisan44

Created on ‎10-28-2024 06:32 AM

In case of PA there is a notePersistent Agent always registers and marks at risk. Make sure that the hosts are registered only through the agent (no registration through DPR, dot1x, portal etc.) and the remediation is configured and enforced while the host is still in the rogue state.

- Emirjon
If you have found a solution, please like and accept it to make it easily accessible for others.
33
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.