Fortinet Document Library

Version:

Version:


Table of Contents

Administration Guide

Download PDF
Copy Link

Port properties

View and configure the default network access settings for the selected port.

  1. Click Network Devices > Topology.
  2. Expand the container where the device is located.
  3. Select a device.
  4. In the Ports tab on the right, right-click on a port and select Port Properties.
  5. The Port option is displayed.
  6. Items that may be edited are:
    • Port Name
    • Admin Status turned On or Off
    • Uplink Mode
    • Current VLAN
    • Default VLAN
    • Notes
  7. Modify the Port Name. The default name displayed for the port is comprised of the sysName of the device, the ifName and, in curly braces, the ifAlias or Port Description. All of this information is read from the switch. For example, Cisco_2600 Fa/07 {Library Front Desk}, where Cisco_2600 is the system name of the device, Fa/07 is the ifName and {Library Front Desk} is the Port Description.
    Note

    Use only letters, numbers and hyphens (-) when creating port descriptions. Other characters, such as #, may prevent FortiNAC from communicating properly with the device.

  8. To set Admin Status, select On or Off.
  9. The Connection State of the port is displayed. See Ports view for a list of connection states.
  10. Select an Uplink Mode for the port.

    Mode

    Description

    Dynamic

    Allows FortiNAC to set the port as an uplink when the threshold for connections is reached.

    If the MAC address on the port is that of a switch that is modeled in the Topology, the port is set as an Uplink.

    Clear

    Check this box to clear all dynamic uplink settings for this port. Settings are cleared when you click Apply. Once the settings are cleared the check mark is removed from the Clear box by FortiNAC.

    Always Uplink

    Sets the port to always be an uplink.

    Never Uplink

    Sets the port to never be an uplink.

    Dot1x Auto Registration

    Disabled by default. Automatic registration of a host based upon the user's 802.1x authentication with the RADIUS server. Upon successful 802.1x authentication, FortiNAC registers the host to the authenticated user prior to the network policy being determined.

    Requirements:

    • FortiNAC version 8.5.2 or higher
    • RADIUS request from Controller/Access Point must contain RADIUS Attribute 30 and include the port value
  11. Enter the value for the Current VLAN.
  12. Enter the value for the Default VLAN.
  13. The CLI Configuration section displays the most recent CLI configuration that has been applied to this port.
  14. Click Port Changes if you wish to display the Port Changes View.
  15. Click Group Membership if you wish to display Port Group Membership to view and modify the groups in which this port is a member.

    Group Membership only appears if the user has permission to view group membership. If the user has permission to view but not modify group membership, the user cannot save changes to group membership.

  16. Click OK to save.

    If you changed the Current VLAN, a warning message appears. Click Yes to confirm that you wish to modify the Current VLAN and save the port properties.

Port properties

View and configure the default network access settings for the selected port.

  1. Click Network Devices > Topology.
  2. Expand the container where the device is located.
  3. Select a device.
  4. In the Ports tab on the right, right-click on a port and select Port Properties.
  5. The Port option is displayed.
  6. Items that may be edited are:
    • Port Name
    • Admin Status turned On or Off
    • Uplink Mode
    • Current VLAN
    • Default VLAN
    • Notes
  7. Modify the Port Name. The default name displayed for the port is comprised of the sysName of the device, the ifName and, in curly braces, the ifAlias or Port Description. All of this information is read from the switch. For example, Cisco_2600 Fa/07 {Library Front Desk}, where Cisco_2600 is the system name of the device, Fa/07 is the ifName and {Library Front Desk} is the Port Description.
    Note

    Use only letters, numbers and hyphens (-) when creating port descriptions. Other characters, such as #, may prevent FortiNAC from communicating properly with the device.

  8. To set Admin Status, select On or Off.
  9. The Connection State of the port is displayed. See Ports view for a list of connection states.
  10. Select an Uplink Mode for the port.

    Mode

    Description

    Dynamic

    Allows FortiNAC to set the port as an uplink when the threshold for connections is reached.

    If the MAC address on the port is that of a switch that is modeled in the Topology, the port is set as an Uplink.

    Clear

    Check this box to clear all dynamic uplink settings for this port. Settings are cleared when you click Apply. Once the settings are cleared the check mark is removed from the Clear box by FortiNAC.

    Always Uplink

    Sets the port to always be an uplink.

    Never Uplink

    Sets the port to never be an uplink.

    Dot1x Auto Registration

    Disabled by default. Automatic registration of a host based upon the user's 802.1x authentication with the RADIUS server. Upon successful 802.1x authentication, FortiNAC registers the host to the authenticated user prior to the network policy being determined.

    Requirements:

    • FortiNAC version 8.5.2 or higher
    • RADIUS request from Controller/Access Point must contain RADIUS Attribute 30 and include the port value
  11. Enter the value for the Current VLAN.
  12. Enter the value for the Default VLAN.
  13. The CLI Configuration section displays the most recent CLI configuration that has been applied to this port.
  14. Click Port Changes if you wish to display the Port Changes View.
  15. Click Group Membership if you wish to display Port Group Membership to view and modify the groups in which this port is a member.

    Group Membership only appears if the user has permission to view group membership. If the user has permission to view but not modify group membership, the user cannot save changes to group membership.

  16. Click OK to save.

    If you changed the Current VLAN, a warning message appears. Click Yes to confirm that you wish to modify the Current VLAN and save the port properties.