Fortinet black logo

Network Device Modeling

Home FortiNAC-F 7.2.0 Network Device Modeling
7.2.0
7.4.0
7.2.0

Requirements

Requirements

FortiNAC

  • FortiNAC-OS appliances (FNC-CAX-xx): allowaccess snmp option must be configured in CLI. See FortiNAC-OS CLI reference manual for details.

  • Enable SSH Keyboard-interactive (KBD) for device models requiring KBD for CLI access. Examples include (but may not be limited to) Arista switches. For details see KB 244979.

Network Devices

Must be configured with the following:

  • SNMP credentials

    • Devices FortiNAC will control: Read/write privileges*

    • L3 devices from which FortiNAC will obtain ARP information but not control: Read privileges

    • Related KB articles:

      Configure and validate Cisco SNMPv3

  • CLI or REST API credentials

    • Devices FortiNAC will control: Read/write privileges (Cisco must be level 15 local user account)*

    • L3 devices from which FortiNAC will obtain ARP information but not control: Read access (level 7)

Able to respond to PING requests from FortiNAC eth0 IP address.* For device modeling, only read privileges are required.

Avoid certain characters. When configuring the device itself, use only letters, numbers and hyphens (-) in names for items within the device configuration, in SNMP and CLI credentials. Other characters may prevent FortiNAC from reading the device configuration. For example, in many cases the # sign is interpreted by FortiNAC as a prompt. Cisco restricts the use of @ and #.

For more details regarding requirements, see the Requirements Task List in the Deployment Guide.

Previous
Next

Requirements

FortiNAC

  • FortiNAC-OS appliances (FNC-CAX-xx): allowaccess snmp option must be configured in CLI. See FortiNAC-OS CLI reference manual for details.

  • Enable SSH Keyboard-interactive (KBD) for device models requiring KBD for CLI access. Examples include (but may not be limited to) Arista switches. For details see KB 244979.

Network Devices

Must be configured with the following:

  • SNMP credentials

    • Devices FortiNAC will control: Read/write privileges*

    • L3 devices from which FortiNAC will obtain ARP information but not control: Read privileges

    • Related KB articles:

      Configure and validate Cisco SNMPv3

  • CLI or REST API credentials

    • Devices FortiNAC will control: Read/write privileges (Cisco must be level 15 local user account)*

    • L3 devices from which FortiNAC will obtain ARP information but not control: Read access (level 7)

Able to respond to PING requests from FortiNAC eth0 IP address.* For device modeling, only read privileges are required.

Avoid certain characters. When configuring the device itself, use only letters, numbers and hyphens (-) in names for items within the device configuration, in SNMP and CLI credentials. Other characters may prevent FortiNAC from reading the device configuration. For example, in many cases the # sign is interpreted by FortiNAC as a prompt. Cisco restricts the use of @ and #.

For more details regarding requirements, see the Requirements Task List in the Deployment Guide.

Previous
Next