Installation for Linux
When a host connects to the network, it is directed to a special web page that allows the user to download a rpm or deb package of the Persistent Agent. Once the Persistent Agent has been downloaded, it must be installed on the host.
Install
- On the host, locate the directory where the
bni-persistent-agent-3.X.X.X-1.x86_64.rpm
orbin-persistent-agent-3.X.X.X-1.amd64.deb
was downloaded. - To install the Persistent Agent package, do the following:
- To install rpm, type:
$ sudo rpm -Uvh bni-persistent-agent-3.X.X.X-1.x86_64.rpm
- To install deb, type:
$ sudo dpkg -i bni-persistent-agent-3.X.X.X-1.amd64.deb
- To install rpm, type:
- The Persistent Agent Icon appears.
Several options are available when you click the icon:
Option
Description
About
Displays the agent version, copyright, and other information.
Show
MessagesDisplays the list of the messages sent through the Persistent Agent that have been received by the host.
If any URLs have been sent separate from a message, a list of these are also be displayed.
Login
Appears when host is in isolation requiring registration or authentication. When selected, opens a login dialog.
Log off the Network
Appears when host is logged in and authenticated. When selected, the host is logged off the network and is placed into isolation requiring authentication.
Show Network Access Status
Appears when the host is isolated for remediation or being disabled. When selected, the user is sent to either the remediation page for rescan or the dead end page if disabled.
- The Agent automatically communicates with the FortiNAC Manager Application Server to authenticate the user’s credentials. Enter the User Name and Password, then click OK.
The user is authenticated and registered.
If FortiNAC Manager’s DNS does contain the specific SRV records used by the Persistent Agent to locate the server, the end user must run the setup script to edit the configuration file for the Linux Persistent Agent.
To run the setup script, do the following:
- To stop the Linux Persistent Agent service type:
$ sudo service bndaemon stop
- Run the setup script.
- Type
$ cd /opt/com.bradfordnetworks/PersistentAgent
- Type
$ sudo ./setup
Enter the following configuration values from the setup:
- Home Server: Enter the FQDN of your the FortiNAC Manager Application Server
- Allowed Servers: Enter any other FortiNAC Manager servers the Agent would need to communicate with.
- Restrict roaming: Restrict the agent to only communicate with servers listed in the Home Server and Allowed Servers fields.
- Type
- To start the Linux Persistent Agent service type:
$ sudo service bndaemon start
Right-click options
Option |
Description |
About |
Displays the agent version, copyright, and other information. |
Show |
Displays the list of the messages sent through the Persistent Agent that have been received by the host. If any URLs have been sent separate from a message, a list of these are also be displayed. |
Login |
Appears when host is in isolation requiring registration or authentication. When selected, opens a login dialog. |
Log off the Network |
Appears when host is logged in and authenticated. When selected, the host is logged off the network and is placed into isolation requiring authentication. |
Show Network Access Status |
Appears when the host is isolated for remediation or being disabled. When selected, the user is sent to either the remediation page for rescan or the dead end page if disabled. |
Host firewall
When a host is running a firewall (iptables), the Persistent Agent will need the ports 4567, 4568 open in order to communicate with FortiNAC Manager.
Uninstall
On the host, use the following commands to remove the Persistent Agent:
- To uninstall rpm, type:
$ sudo rpm -ev bni-persistent-agent
- To uninstall deb, type:
$ sudo dpkg --purge bni-persistent-agent