Description This article describes how to leverage 'Host' and 'User'
group types' in Network Access Policies, depending on how the endpoint
is registered. Scope FortiNAC-F v7.6 and greater. Solution As of
FortiNAC version F7.6.0, FortiNAC will automa...
Description This article describes how the TCP/UDP device profiling
method works and how to check profiling results when the rule does not
match. Scope FortiNAC-F. Solution When TCP or UDP methods are used for
device profiling, FortiNAC will utilize ...
Description This article describes the steps and verification procedures
required to profile devices using the SNMP method. Scope FortiNAC.
Solution When profiling with the SNMP method, FortiNAC will send a SNMP
Get Request to the Isolated device and...
Description This article describes the concept of 'Ports in the Network'
in FortiNAC. This is required to properly understand the scope of the
network environment to adjust resources allocated to FortiNAC for
optimal performance. Scope FortiNAC, Fort...
Description This article describes the steps required to fully restore a
FortiNAC server after a system failure or when redeployment is needed.
Scope FortiNAC-F v7.4.X, v7.6.X. Solution The full restoration of
FortiNAC requires that administrators al...
Yes, at the moment FortiNAC can use only AD on-premise as native
authentication source for Persistent agent, radius or other methods.
Once Entra ID will be supported in FortiNAC new releases, it will be
able to perform authentication and user/group l...
Even if HTTP/HTTPS is enabled in a LAN interface, there is still a risk
of exposure since that vulnerability can be exploited from the internal
interface. I would suggest to apply local-in policies as provided in the
'Workaround' section in
(https://...
In this case the vulnerability is CVE-2024-46666 which will cause a
Denial of Service. You are vulnerable because an adversary/attacker can
craft REST API requests that will make the FortiGate unresponsive and
impact any endpoints using its services....
Well, when you said the AP is dissapearing from DHCP table i presumed
they were not retaining IP configuration. - after restart, APs get their
IP from DHCP on Fortigate, but later they disappear from DHCP table You
did not mention that the AP keeps i...