Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Administration Guide

    Home FortiNAC-F 7.2.0 Administration Guide
    7.2.0
    7.6.0
    7.4.0
    7.2.0

    Manage policies

    Manage policies

    Create Portal Policies to assign a portal when an unregistered host connects to the network. Policies are selected for a connecting host by matching host attributes to the criteria defined in the associated user/host profile. The first policy that matches the host data is assigned.

    Note

    If the host does not match any policy, it is assigned the default Portal. See Select a default portal.
    Settings

    An empty field in a column indicates that the option has not been set.

    Field

    Definition

    Rank

    Policy's rank in the list of policies. Rank controls the order in which host connections are compared to Policies.

    Enabled

    Indicates if the policy is enabled/disabled.

    Name

    User defined name for the policy.

    Configuration

    Contains the configuration for the portal that will be assigned if this Portal Policy matches the connecting host. See Portal content editor.

    Who/What

    Attributes

    A host or user must meet all parameters within a single filter, but is only required to match one filter in the list. The attribute must be known at the time of connection. See Filter example.

    RADIUS Attributes

    Used to match against endpoints pre- and post-authentication.

    Groups

    • Any — Matches any group.

    • Any Of — Matches any of the listed groups. Does not have to match everything, but has to match at least one group that has been selected.

    • All Of — Has to match every group that's been selected.

    • None Of — Has to match no group that's been selected.

    Where

    The connection location specified in the user/host profile. The host must connect to the network on a device, port or SSID contained within one of the groups shown here to be a match. When set to Any, this field is a match for all hosts or users.

    When

    The time frame specified in the selected user/host profile. The host must be on the network within this time frame to be a match. When set to Always, this field is a match for all hosts or users.

    Notes

    User specified note field. This field may contain notes regarding the data conversion from a previous version of FortiNAC.

    Right click options

    Show Audit Log

    Opens the admin auditing log showing all changes made to the selected item.

    For information about the admin auditing log, see Audit Logs.

    Note

    You must have permission to view the admin auditing log. See Add an administrator profile.
    Previous
    Next

    Manage policies

    Manage policies

    Create Portal Policies to assign a portal when an unregistered host connects to the network. Policies are selected for a connecting host by matching host attributes to the criteria defined in the associated user/host profile. The first policy that matches the host data is assigned.

    Note

    If the host does not match any policy, it is assigned the default Portal. See Select a default portal.
    Settings

    An empty field in a column indicates that the option has not been set.

    Field

    Definition

    Rank

    Policy's rank in the list of policies. Rank controls the order in which host connections are compared to Policies.

    Enabled

    Indicates if the policy is enabled/disabled.

    Name

    User defined name for the policy.

    Configuration

    Contains the configuration for the portal that will be assigned if this Portal Policy matches the connecting host. See Portal content editor.

    Who/What

    Attributes

    A host or user must meet all parameters within a single filter, but is only required to match one filter in the list. The attribute must be known at the time of connection. See Filter example.

    RADIUS Attributes

    Used to match against endpoints pre- and post-authentication.

    Groups

    • Any — Matches any group.

    • Any Of — Matches any of the listed groups. Does not have to match everything, but has to match at least one group that has been selected.

    • All Of — Has to match every group that's been selected.

    • None Of — Has to match no group that's been selected.

    Where

    The connection location specified in the user/host profile. The host must connect to the network on a device, port or SSID contained within one of the groups shown here to be a match. When set to Any, this field is a match for all hosts or users.

    When

    The time frame specified in the selected user/host profile. The host must be on the network within this time frame to be a match. When set to Always, this field is a match for all hosts or users.

    Notes

    User specified note field. This field may contain notes regarding the data conversion from a previous version of FortiNAC.

    Right click options

    Show Audit Log

    Opens the admin auditing log showing all changes made to the selected item.

    For information about the admin auditing log, see Audit Logs.

    Note

    You must have permission to view the admin auditing log. See Add an administrator profile.
    Previous
    Next