Validate Enforcement
-
Connect a rogue host to one of the managed ports
-
Host receives IP address from FortiGate
-
Upon bringing up browser, the captive portal is displayed (if configured). If portal page is slow to build, certain domains may need to be whitelisted. See KB article Captive Portal Slow to Build.
-
Register the system
-
Once registered, verify the correct Network Access Policy matches in FortiNAC
-
In FortiNAC UI, navigate to Hosts > Host View
-
Search on host record, right click and select Policy Details
-
-
Verify the correct IPv4 Policy matches in the FortiGate
-
In FortiGate UI, navigate to FortiView > Sources
-
Double click on host entry
-
Click Policies tab
-
Hover over policy to verify time last used
-
Confirm user is able to access network resources as expectedIf any of the above do not work as expected, refer to the Troubleshooting section of this document.