Name of the vendor of the MDM system.

Name of the connection configuration for the connection between an MDM system and FortiNAC.

The URL for the API to which FortiNAC must connect to request data. This will be a unique URL based on your MDM system.

A type of key used to identify FortiNAC to the MDM server. This field is not required for all MDM products.

In the case of AirWatch, this is the API Key generated during the AirWatch Configuration. An API key is a unique code that identifies the FortiNAC server to AirWatch and is part of the authentication process for AirWatch.

Enter the application ID.

Select one of the following options:

• Application Secret: Option for Application Access that uses an application password to authenticate with the MSIntune API.

• Certificate: Option for Application Access that uses an X509 certificate to authenticate with the MSIntune API.

• Delegated Permissions: Option for delegated access that requires the user to sign in to the MS Azure portal to give FortiNAC permissions to make calls to the MSIntune on behalf of the user.

Enter the platform version number.

Enter the application version number.

Enter the application access key (API key).

If enabled, API permissions are delegated by a signed-in user. When disabled, API permissions are configured and granted in the MDM application registration portal (recommended configuration).

Note: Existing MS Intune connectors created prior to versions 9.1.6/9.2.3/9.4.0 will have this setting enabled.

User name of the account used by FortiNAC to log into the MDM system when requesting data.

Password for the account used by FortiNAC to log into the MDM system when requesting data.

This field displays only when adding a new MDM connection configuration. It is not displayed in the table of MDM servers.

Indicates how often FortiNAC should poll the MDM system for information.

Date and time of the last poll.

Date and time of the last poll that successfully retrieved data.

Date that this connection configuration was set up.

If enabled, when an unknown host reaches the captive portal, FortiNAC queries the MDM server for information about that host. If the host exists in the MDM server, it is registered in FortiNAC using the data from the MDM server.

If enabled, when the host connects to the network FortiNAC queries the MDM server to determine if the host is compliant with MDM policies. This setting is disabled by default. When enabled, the MDM may not be able to manage the rate of queries from FortiNAC, causing performance issues. Instead of enabling Revalidate Health Status On Connect, you can enable automatic registration polling to occur once a day, which will also retrieve Health Status, but with less frequency.

If enabled, when FortiNAC polls the MDM server it deletes hosts from the FortiNAC database if they have been removed or disabled on the MDM server.

If enabled, when FortiNAC polls the MDM server it retrieves and stores the Application Inventory for hosts that are in the FortiNAC database. This setting is disabled by default. When enabled, the MDM may not be able to manage the rate of queries from FortiNAC, causing performance issues.

User name of the last user to modify the connection configuration.

Date and time of the last modification to this connection configuration.

GSuite: (Introduced in FortiNAC version 9.4) Imports the Service Account Key JSON file downloaded from the Google Developers Console.

1) Select the "Modify Credential JSON" button.

2) Populate the Credential JSON field with the Service Account Key file downloaded from the Google Developers Console. This can be done in two ways:

Option 1 (Recommended): Click Browse and select the file. It's contents will appear in the Credential JSON window.

Option 2: Copy and paste the file contents.

Right click options

Deletes the MDM Service.

Opens the Modify MDM Service dialog.

Polls the MDM server immediately.

Opens the admin auditing log showing all changes made to the selected item.

For information about the admin auditing log, see Audit Logs.

You must have permission to view the admin auditing log. See Add an administrator profile.

Tests the connection between the selected MDM server and FortiNAC. Error messages indicate which fields are missing or incorrect.

Buttons

Opens the Add MDM Service dialog.

Opens the Modify MDM Service dialog.

Exports the data displayed to a file in the default downloads location. File types include CSV, Excel, PDF, or RTF. See Export data.

Tests the connection between the selected MDM server and FortiNAC. Error messages indicate which fields are missing or incorrect.