Fortinet white logo
Fortinet white logo

Administration Guide

SSID view

SSID view

When you select a supported wireless device from the menu tree in the Topology, Ports and SSIDs tabs are displayed in the right pane. This view shows all of the SSIDs on the device, however, it does not show when hosts are connected. If an SSID has been removed from the device, it is displayed in red on the SSIDs tab. The configuration information for that SSID remains in the database until it is deleted manually. When FortiNAC resynchronizes with the device, all SSIDs that exist on the device are displayed. If an SSID was deleted from FortiNAC, but still exists on the device, it reappears during resynchronization.

Note

FortiNAC does not display SSIDs for all wireless devices. Refer to WLAN management and for additional information.

See Icons for additional information.

Settings

Field

Definition

Add Filter

Allows you to select a field from the current view to filter information. Select the field from the drop-down list, and then enter the information you wish to filter.

Update Button

Click to update the data in the table.

Table columns

Name

The SSID name.

Container

Container where the device that is broadcasting the SSID resides. Containers are used to group devices.

Device

Name of the device that is broadcasting the SSID.

RADIUS

Indicates whether the SSID inherits the RADIUS server settings from its parent device, or if the settings are customized in the SSID Configuration.

Network Access

Indicates whether the SSID inherits the network access or VLAN/role settings of its parent device, or if the settings are customized in the SSID Configuration.

Primary RADIUS Server

The RADIUS server used for authenticating users connecting to the network through this SSID.

See RADIUS for information on configuring your RADIUS servers.

Secondary RADIUS Server

If the primary RADIUS server fails to respond, this RADIUS server is used for authenticating users connecting to the network until the primary RADIUS server responds.

Default

The Default VLAN value is stored in the FortiNAC database and is used when the VLAN is not determined by another method, such as a network access policy.

Typically, if a VLAN is specified as the Default, it is the VLAN used for "normal" or "production" network access. It will be used for all the untagged (non-uplink) ports on the device.

Dead End

The dead end VLAN for this SSID. Isolates disabled hosts with limited or no network connectivity from the production network.

Registration

The registration VLAN for this SSID. Isolates unregistered hosts from the production network during host registration.

Quarantine

The quarantine VLAN for this SSID. Isolates hosts from the production network who pose a security risk because they failed a scan defined in an endpoint compliance policy.

Authentication

The authentication VLAN for this device. Isolates registered hosts from the Production network during user authentication.

Right click options

Export

Exports the data displayed to a file in the default downloads location. File types include CSV, Excel, PDF, or RTF. See Export data.

Delete

Deletes the selected SSID.

Group Membership

Displays port group membership, which allows you to view and modify the groups in which this port is a member. See Group membership.

SSID Configuration

Opens the SSID configuration window.

If multiple SSIDs are selected simultaneously, the Modify SSID Configuration window opens.

Select Device In Tree

Locates the selected device in the tree on the right and highlights it.

Show Audit Log

Opens the admin auditing log showing all changes made to the selected item.

For information about the admin auditing log, see Admin auditing.

Note

You must have permission to view the admin auditing log. See Add an administrator profile.

SSID view

SSID view

When you select a supported wireless device from the menu tree in the Topology, Ports and SSIDs tabs are displayed in the right pane. This view shows all of the SSIDs on the device, however, it does not show when hosts are connected. If an SSID has been removed from the device, it is displayed in red on the SSIDs tab. The configuration information for that SSID remains in the database until it is deleted manually. When FortiNAC resynchronizes with the device, all SSIDs that exist on the device are displayed. If an SSID was deleted from FortiNAC, but still exists on the device, it reappears during resynchronization.

Note

FortiNAC does not display SSIDs for all wireless devices. Refer to WLAN management and for additional information.

See Icons for additional information.

Settings

Field

Definition

Add Filter

Allows you to select a field from the current view to filter information. Select the field from the drop-down list, and then enter the information you wish to filter.

Update Button

Click to update the data in the table.

Table columns

Name

The SSID name.

Container

Container where the device that is broadcasting the SSID resides. Containers are used to group devices.

Device

Name of the device that is broadcasting the SSID.

RADIUS

Indicates whether the SSID inherits the RADIUS server settings from its parent device, or if the settings are customized in the SSID Configuration.

Network Access

Indicates whether the SSID inherits the network access or VLAN/role settings of its parent device, or if the settings are customized in the SSID Configuration.

Primary RADIUS Server

The RADIUS server used for authenticating users connecting to the network through this SSID.

See RADIUS for information on configuring your RADIUS servers.

Secondary RADIUS Server

If the primary RADIUS server fails to respond, this RADIUS server is used for authenticating users connecting to the network until the primary RADIUS server responds.

Default

The Default VLAN value is stored in the FortiNAC database and is used when the VLAN is not determined by another method, such as a network access policy.

Typically, if a VLAN is specified as the Default, it is the VLAN used for "normal" or "production" network access. It will be used for all the untagged (non-uplink) ports on the device.

Dead End

The dead end VLAN for this SSID. Isolates disabled hosts with limited or no network connectivity from the production network.

Registration

The registration VLAN for this SSID. Isolates unregistered hosts from the production network during host registration.

Quarantine

The quarantine VLAN for this SSID. Isolates hosts from the production network who pose a security risk because they failed a scan defined in an endpoint compliance policy.

Authentication

The authentication VLAN for this device. Isolates registered hosts from the Production network during user authentication.

Right click options

Export

Exports the data displayed to a file in the default downloads location. File types include CSV, Excel, PDF, or RTF. See Export data.

Delete

Deletes the selected SSID.

Group Membership

Displays port group membership, which allows you to view and modify the groups in which this port is a member. See Group membership.

SSID Configuration

Opens the SSID configuration window.

If multiple SSIDs are selected simultaneously, the Modify SSID Configuration window opens.

Select Device In Tree

Locates the selected device in the tree on the right and highlights it.

Show Audit Log

Opens the admin auditing log showing all changes made to the selected item.

For information about the admin auditing log, see Admin auditing.

Note

You must have permission to view the admin auditing log. See Add an administrator profile.