Fortinet white logo
Fortinet white logo

Administration Guide

Manage hosts and ports

Manage hosts and ports

Manage Hosts & Ports contains a list of host and port groups. This view works in conjunction with Administrative groups to limit Admin user access. When you add an Admin user to an Administrative group, only the groups that the Admin user has permission to manage are listed in the Manage Hosts & Ports tab. Select a group from the list and click Apply to view or manage the members of the group. Click Add Hosts to add hosts to the database.

Add hosts

Administrative Users who do not have full access to the Admin user interface can add hosts in the Manage Hosts And Ports View. The Administrative User's Admin Profile must have permission for Manage Hosts & Ports with Access and Add/Modify enabled.

Access add hosts

  1. Select Bookmarks > Manage Hosts & Ports.
  2. Click the Add Hosts button at the bottom of the window.

Hosts added through this process are either registered to a user or registered as a device.

Host registered to a user

A host registered to a user is associated with that user and inherits network access parameters from the user. The host contributes to the Allowed Hosts count for the user. If the host is registered here, the user will not have to go through the registration process elsewhere, such as the captive portal.

Host registered as a device

A host registered as a device can be displayed in the Host View or both the Host View and Topology View. Typically hosts registered as devices are items such as IP phones, security cameras, alarm systems or printers.

Settings

Field

Definitions

Register host to user

User ID

ID of the user who owns this host. As you type a list of matching user IDs drops down. For example if you type ab, user IDs that start with ab are displayed. If the user ID does not exist in the database, but does exist in the directory used to authenticate users, the user is created at the same time. If the user does not exist either in the directory or in your database, you cannot save the host.

If registering this host to a User exceeds the number of Allowed Hosts for that user, a message is displayed indicating that Allowed Hosts has been automatically incremented and the host is registered to the user.

Register host as device

Create In

Indicates where the device should be displayed. Options include Host View or Host View And Topology View.

Container

If the host is created in both Host View and Topology View, you must choose a Topology View container to contain the host. Containers in Topology are used to group devices.

General

Role

Roles are attributes of hosts and users that can be used as filters in User/Host Profiles.

If the host is registered to a user, there are two options for selecting the host role:

  • Use Role From User — Indicates that the host role is inherited from the registered user associated with the host.
  • Specify Role — Indicates that the host role is manually selected. This enables a drop-down list of possible roles from which you can choose.

If the host is registered as a device in Topology View only, its role is used to control network access or can be used to apply a CLI configuration. For example, a CLI configuration could be used to reduce the baud rate of a device when it connects to the network.

Host Name

Name of the host being registered.

Hardware Type

Type of hardware such as Printer, Server or Workstation.

Serial Number

Serial number on the device. May be of assistance if the device is ever stolen.

Operating System

Operating system on the host, such as Windows XP or macOS.

Note

Only hosts with a valid operating system can be rescanned. Valid operating systems are Windows, Mac, and Linux.

Device Type

Indicates the type of device being disinterested registering a host to a user this field defaults to Registered Host. It could also be set to a gaming or mobile device. When registering as a device, this might be set to devices that are not typically associated with an owner, such as a printer or an alarm system. An icon representing the device selected displays beside the Device Type field.

If the device is an Access Point and you register it in Host View, it is removed from the Host View and moved to Topology View after the first poll. It is also removed from the Concurrent License count once it is recognized as an Access Point.

Notes

Free form notes entered by the Administrator.

Security and Access Attribute Value

This value can be included in a filter when determining the Security Policy that should scan this host when it connects to the network. If a directory is in use and a user is associated with this host, the value comes from the directory when it is synchronized with the database. Otherwise the value can be entered manually.

Adapters

Lists the adapters or network interfaces that exist on this host. By listing all adapter's on the host here, you establish that these adapters are siblings. Number of adapters per host is limited to five. See Edit adapters below.

Physical Address — MAC Address of the adapter

Media Type — Indicates whether the adapter is wired or wireless.

Edit adapters

  1. Go to the Adapter section of the Add or Modify Host Window.
  2. To Add an Adapter: Click the Add button and provide the Physical Address and the Media Type, such as wired or wireless.
  3. To Modify an Adapter: Select an Adapter and click the Modify button. Change the Media Type as needed. To change the Physical Address you must delete the adapter and add it again.
  4. To Delete an Adapter: Click on the Adapter to select it and click Delete.
  5. Click OK to save.
Note

The number of adapters per host is limited to five.

View hosts and ports

  1. Select Bookmarks > Manage Hosts & Ports.
  2. Click the appropriate host group and then click Apply.
  3. A list of hosts contained in the selected group is displayed. The host information shown includes Status, Name, IP address, Description of the device and port where the host is connected, and On/Off control for the port.
  4. Click the host name to view the Properties.
  5. Click the Description to view the Port properties.
  6. Click On or Off to turn the port on or off.
  7. Click Apply if any changes are made to the On/Off status of the port.

View and manage ports

  1. Select Bookmarks > Manage Hosts & Ports.
  2. Click a port group and then click Apply.
  3. A list of ports contained in the selected group is displayed. The port information shown includes Status, Description of the port, Name of the connected host (if any), and On/Off control for the port.
  4. Click the Status icon to view the Connection details for the port.
  5. Click the Description to view the Port properties.
  6. Click On or Off to turn the port on or off.
  7. Click Apply if any changes are made to the On/Off status of the port.

Manage hosts and ports

Manage hosts and ports

Manage Hosts & Ports contains a list of host and port groups. This view works in conjunction with Administrative groups to limit Admin user access. When you add an Admin user to an Administrative group, only the groups that the Admin user has permission to manage are listed in the Manage Hosts & Ports tab. Select a group from the list and click Apply to view or manage the members of the group. Click Add Hosts to add hosts to the database.

Add hosts

Administrative Users who do not have full access to the Admin user interface can add hosts in the Manage Hosts And Ports View. The Administrative User's Admin Profile must have permission for Manage Hosts & Ports with Access and Add/Modify enabled.

Access add hosts

  1. Select Bookmarks > Manage Hosts & Ports.
  2. Click the Add Hosts button at the bottom of the window.

Hosts added through this process are either registered to a user or registered as a device.

Host registered to a user

A host registered to a user is associated with that user and inherits network access parameters from the user. The host contributes to the Allowed Hosts count for the user. If the host is registered here, the user will not have to go through the registration process elsewhere, such as the captive portal.

Host registered as a device

A host registered as a device can be displayed in the Host View or both the Host View and Topology View. Typically hosts registered as devices are items such as IP phones, security cameras, alarm systems or printers.

Settings

Field

Definitions

Register host to user

User ID

ID of the user who owns this host. As you type a list of matching user IDs drops down. For example if you type ab, user IDs that start with ab are displayed. If the user ID does not exist in the database, but does exist in the directory used to authenticate users, the user is created at the same time. If the user does not exist either in the directory or in your database, you cannot save the host.

If registering this host to a User exceeds the number of Allowed Hosts for that user, a message is displayed indicating that Allowed Hosts has been automatically incremented and the host is registered to the user.

Register host as device

Create In

Indicates where the device should be displayed. Options include Host View or Host View And Topology View.

Container

If the host is created in both Host View and Topology View, you must choose a Topology View container to contain the host. Containers in Topology are used to group devices.

General

Role

Roles are attributes of hosts and users that can be used as filters in User/Host Profiles.

If the host is registered to a user, there are two options for selecting the host role:

  • Use Role From User — Indicates that the host role is inherited from the registered user associated with the host.
  • Specify Role — Indicates that the host role is manually selected. This enables a drop-down list of possible roles from which you can choose.

If the host is registered as a device in Topology View only, its role is used to control network access or can be used to apply a CLI configuration. For example, a CLI configuration could be used to reduce the baud rate of a device when it connects to the network.

Host Name

Name of the host being registered.

Hardware Type

Type of hardware such as Printer, Server or Workstation.

Serial Number

Serial number on the device. May be of assistance if the device is ever stolen.

Operating System

Operating system on the host, such as Windows XP or macOS.

Note

Only hosts with a valid operating system can be rescanned. Valid operating systems are Windows, Mac, and Linux.

Device Type

Indicates the type of device being disinterested registering a host to a user this field defaults to Registered Host. It could also be set to a gaming or mobile device. When registering as a device, this might be set to devices that are not typically associated with an owner, such as a printer or an alarm system. An icon representing the device selected displays beside the Device Type field.

If the device is an Access Point and you register it in Host View, it is removed from the Host View and moved to Topology View after the first poll. It is also removed from the Concurrent License count once it is recognized as an Access Point.

Notes

Free form notes entered by the Administrator.

Security and Access Attribute Value

This value can be included in a filter when determining the Security Policy that should scan this host when it connects to the network. If a directory is in use and a user is associated with this host, the value comes from the directory when it is synchronized with the database. Otherwise the value can be entered manually.

Adapters

Lists the adapters or network interfaces that exist on this host. By listing all adapter's on the host here, you establish that these adapters are siblings. Number of adapters per host is limited to five. See Edit adapters below.

Physical Address — MAC Address of the adapter

Media Type — Indicates whether the adapter is wired or wireless.

Edit adapters

  1. Go to the Adapter section of the Add or Modify Host Window.
  2. To Add an Adapter: Click the Add button and provide the Physical Address and the Media Type, such as wired or wireless.
  3. To Modify an Adapter: Select an Adapter and click the Modify button. Change the Media Type as needed. To change the Physical Address you must delete the adapter and add it again.
  4. To Delete an Adapter: Click on the Adapter to select it and click Delete.
  5. Click OK to save.
Note

The number of adapters per host is limited to five.

View hosts and ports

  1. Select Bookmarks > Manage Hosts & Ports.
  2. Click the appropriate host group and then click Apply.
  3. A list of hosts contained in the selected group is displayed. The host information shown includes Status, Name, IP address, Description of the device and port where the host is connected, and On/Off control for the port.
  4. Click the host name to view the Properties.
  5. Click the Description to view the Port properties.
  6. Click On or Off to turn the port on or off.
  7. Click Apply if any changes are made to the On/Off status of the port.

View and manage ports

  1. Select Bookmarks > Manage Hosts & Ports.
  2. Click a port group and then click Apply.
  3. A list of ports contained in the selected group is displayed. The port information shown includes Status, Description of the port, Name of the connected host (if any), and On/Off control for the port.
  4. Click the Status icon to view the Connection details for the port.
  5. Click the Description to view the Port properties.
  6. Click On or Off to turn the port on or off.
  7. Click Apply if any changes are made to the On/Off status of the port.