Re: certificate for FGFM protocol - Error (Auto Li...

BarryGhuman · 10-28-2024

Hi Team, I am applying Secure communication between FortiManger and FortiGate. The certificates are good and tested properly. Here are the errors and debugs: FortiManager: 2024-10-28 22:07:06 { "client": "dmserver:907", "id": 30, "method": "exec", "p...

FortiNAC - LDAP user group · 09-10-2024

Hi Team, I am swapping from Cisco ISE to FortiNAC. Currently, ISE permits access with EAP-TLS and LDAP user groups (Domain users and domain computers) In FortiNAC, EAP-TLS authentication is possible but I don't see any option to permit access based o...

BarryGhuman · 07-04-2024

Hi Team, I am replacing Cisco ISE with FortiNAC. The Cisco ISE is currently configured to profile the Access Points and send a Cisco Neat attribute. This Neat attribute helps the Cisco switch assign a truck role to the port. In FortiNAC, Network Acce...

BarryGhuman · 11-01-2024

Hi Debbie, I think there is a missing flow here. When manually adding the FortiManager serial number under the FortiGate "config system central-management". Could you verify if adding a serial number is required because it is not mentioned in the con...

BarryGhuman · 10-31-2024

Hi Jean, I found that manually adding the FMG serial number on FGT helps, but I want to know if this is the procedure. Regards, Barry Ghuman

Re: FortiNAC - LDAP user group · 09-10-2024

Hi, I don't see anything in the NAC-F. Could you please confirm if the feature is still available?

Re: FortiNAC - LDAP user group · 09-10-2024

I must assign the network to the users based on their username (fetched from the EAP-TLS certificate CN or SAN). I don't see any option in FortiNAC that maps "Network Access" based on the LDAP group membership. For Example: Workstation (logical Netwo...

BarryGhuman · 07-11-2024

Hi Ebilcari, The document talks about "Tunnel-Private-Group-Id". However, the %Access_Value% is the reference value of the attribute and can be used for any attribute. It is not limited to the VLAN attribute. Regards, Barry Ghuman

User Statistics

User Activity

certificate for FGFM protocol - Error (Auto Link Disabled)

FortiNAC - LDAP user group

FortiNAC to send the Cisco radius Neat attribute