Hi Team, I am applying Secure communication between FortiManger and
FortiGate. The certificates are good and tested properly. Here are the
errors and debugs: FortiManager: 2024-10-28 22:07:06 { "client":
"dmserver:907", "id": 30, "method": "exec", "p...
Hi Team, I am swapping from Cisco ISE to FortiNAC. Currently, ISE
permits access with EAP-TLS and LDAP user groups (Domain users and
domain computers) In FortiNAC, EAP-TLS authentication is possible but I
don't see any option to permit access based o...
Hi Team, I am replacing Cisco ISE with FortiNAC. The Cisco ISE is
currently configured to profile the Access Points and send a Cisco Neat
attribute. This Neat attribute helps the Cisco switch assign a truck
role to the port. In FortiNAC, Network Acce...
Hi Debbie, I think there is a missing flow here. When manually adding
the FortiManager serial number under the FortiGate "config system
central-management". Could you verify if adding a serial number is
required because it is not mentioned in the con...
I must assign the network to the users based on their username (fetched
from the EAP-TLS certificate CN or SAN). I don't see any option in
FortiNAC that maps "Network Access" based on the LDAP group membership.
For Example: Workstation (logical Netwo...
Hi Ebilcari, The document talks about "Tunnel-Private-Group-Id".
However, the %Access_Value% is the reference value of the attribute and
can be used for any attribute. It is not limited to the VLAN attribute.
Regards, Barry Ghuman
