Technical Tip: Comprehensive guide for a simple Fo...

Hatibi · 12-01-2025

Description This article describes how to fix issues where an administrator is unable to edit or delete a user in FortiNAC with error reporting: 'failed to get validate permission results' Scope FortiNAC-F. Solution To get more information on the iss...

Hatibi · 11-27-2025

Description This article describes how to troubleshoot and identify L2 poll failures caused by the password expiration policy on the CLI account. Scope FortiNAC-F v7.6, FortiGate. Solution L2 polling is a critical function of FortiNAC, which relates ...

Hatibi · 10-15-2025

Description This article describes how to solve issues where a server's SSH key fingerprint has changed and is preventing the High Availability configuration from being applied. Scope FortiNAC-F v7.6 and greater. Solution When a FortiNAC secondary se...

Hatibi · 08-21-2025

Description This articles describes how to resolve issues where FortiNAC Isolation portal is not redirecting users to authenticate in Entra ID or any other IDP. Scope FortiNAC-F. Solution FortiNAC captive portal can provide users with the option to r...

Hatibi · 07-24-2025

Description This article describes the required RADIUS configuration options when clients are rejected with the error 'Access-reject-event: No Winbind Domain'. Scope FortiNAC-F. Solution The Winbind feature is required when administrators want to imp...

Hatibi · 07-24-2025

SPA with SDWAN - this means you already have an existing SDWAN deployment with FortiGate Hub and spokes mesh connection which are normally managed by a FortiManager with SDWAN templates. By integrating with SASE you provide SPA for remote users that ...

Hatibi · 07-23-2025

You want public/internet traffic for your remote users to go through FortiSASE (Cloud) In that case you need to implement SIA (Secure internet access). a) SIA for agent-based remote users Overview: https://docs.fortinet.com/document/fortisase/latest/...

Hatibi · 07-01-2025

Hello, so you are using API to retrieve IPS data from FortiGate. Can you check what response is the FortiGate providing upon getting the API request? Maybe there is a need to use a different API endpoint when requesting data. In FortiGate use the fol...

Hatibi · 02-14-2025

Yes, at the moment FortiNAC can use only AD on-premise as native authentication source for Persistent agent, radius or other methods. Once Entra ID will be supported in FortiNAC new releases, it will be able to perform authentication and user/group l...

Hatibi · 02-13-2025

This is being planned to be added in FortiNAC future releases.

User Statistics

User Activity

Technical Tip: Trying to edit or delete a user fails with error: 'failed to get validate permission results'

Troubleshooting Tip: FortiGate L2 poll failure due to password expiration policy on CLI account

Technical Tip: High Availability configuration failure due to host key change

Technical Tip: Captive portal not redirecting to Entra ID or Google Cloud for Sign-in

Troubleshooting Tip: Resolve RADIUS Access-Rejects with Error 'No Winbind Domain'

Re: Fortisase guide - initial setup

Re: Fortisase guide - initial setup

Re: The API_Key used has no authorization

Re: FortiNAC integration with EntraID

Re: FortiNAC integration with EntraID

Technical Tip: Comprehensive guide for a simple Fo...

Technical Tip: FortiGate explicit proxy authentica...

Technical Tip: Run tcpdump in FortiNAC-F and save ...

Troubleshooting Tip: Host visibility issues in For...

Technical Tip: FortiNAC general troubleshooting gu...

Re: FortiNAC integration with EntraID

Re: Should I upgrade FortiOS for vulnerability CVE...

Re: Issue with dot1x Configuration on FortiNAC

Re: FortiNAC restrict access to container

Re: Fortinac

KCS

User Statistics

User Activity

You are leaving our website