Fortinet Document Library

Version:

Version:


Table of Contents

Administration Guide

Download PDF
Copy Link

Device profiler

Device profiler is a mechanism to automatically categorize and control unknown or rogue devices that connect to your network and receive an IP address. This process runs continuously. It scans the host database for rogues with IP addresses and assigns them a device type based on profiles or rules set up in FortiNAC. Device profile rules use information such as operating system and vendor OUI to determine what the connecting device might be. Device profiler is installed with some default rules which can be refined and new rules can be added. You can evaluate uncategorized rogues manually as new rules are added or existing rules are modified.

During an initial installation of FortiNAC this feature increases the speed with which devices are identified. After installation, device profiler provides easy management of new devices as they come online. Devices that are typically identified by device profiler include items such as IP phones, gaming devices, or mobile devices.

After a device has been categorized, the rule used to profile the device is associated with that device. If the device disconnects from the network and later reconnects, device profiler confirms that the device still matches the rule. If the device does not match its associated rule, device profiler can disable the device or notify the administrator by using events and alarms. Rule confirmation is an optional setting. This setting can be applied globally on the rule itself or individually on a profiled device.

To manage device profiler, you have the option of creating administrators known as device managers with an administrator profile that limits their permissions within FortiNAC. Creating additional users with limited permissions to manage new devices frees your regular IT staff to perform other tasks.

Device profiler

Device profiler is a mechanism to automatically categorize and control unknown or rogue devices that connect to your network and receive an IP address. This process runs continuously. It scans the host database for rogues with IP addresses and assigns them a device type based on profiles or rules set up in FortiNAC. Device profile rules use information such as operating system and vendor OUI to determine what the connecting device might be. Device profiler is installed with some default rules which can be refined and new rules can be added. You can evaluate uncategorized rogues manually as new rules are added or existing rules are modified.

During an initial installation of FortiNAC this feature increases the speed with which devices are identified. After installation, device profiler provides easy management of new devices as they come online. Devices that are typically identified by device profiler include items such as IP phones, gaming devices, or mobile devices.

After a device has been categorized, the rule used to profile the device is associated with that device. If the device disconnects from the network and later reconnects, device profiler confirms that the device still matches the rule. If the device does not match its associated rule, device profiler can disable the device or notify the administrator by using events and alarms. Rule confirmation is an optional setting. This setting can be applied globally on the rule itself or individually on a profiled device.

To manage device profiler, you have the option of creating administrators known as device managers with an administrator profile that limits their permissions within FortiNAC. Creating additional users with limited permissions to manage new devices frees your regular IT staff to perform other tasks.