Fortinet white logo
Fortinet white logo

FortiNAC Manager

9.4.0

Installation for Linux

Installation for Linux

When a host connects to the network, it is directed to a special web page that allows the user to download a rpm or deb package of the Persistent Agent. Once the Persistent Agent has been downloaded, it must be installed on the host.

Install
  1. On the host, locate the directory where the bni-persistent-agent-3.X.X.X-1.x86_64.rpm or bin-persistent-agent-3.X.X.X-1.amd64.deb was downloaded.
  2. To install the Persistent Agent package, do the following:
    1. To install rpm, type: $ sudo rpm -Uvh bni-persistent-agent-3.X.X.X-1.x86_64.rpm
    2. To install deb, type: $ sudo dpkg -i bni-persistent-agent-3.X.X.X-1.amd64.deb
  3. The Persistent Agent Icon appears.

    Several options are available when you click the icon:

    Option

    Description

    About

    Displays the agent version, copyright, and other information.

    Show
    Messages

    Displays the list of the messages sent through the Persistent Agent that have been received by the host.

    If any URLs have been sent separate from a message, a list of these are also be displayed.

    Login

    Appears when host is in isolation requiring registration or authentication. When selected, opens a login dialog.

    Log off the Network

    Appears when host is logged in and authenticated. When selected, the host is logged off the network and is placed into isolation requiring authentication.

    Show Network Access Status

    Appears when the host is isolated for remediation or being disabled. When selected, the user is sent to either the remediation page for rescan or the dead end page if disabled.

  4. The Agent automatically communicates with the FortiNAC Manager Application Server to authenticate the user’s credentials. Enter the User Name and Password, then click OK.

    The user is authenticated and registered.

If FortiNAC Manager’s DNS does contain the specific SRV records used by the Persistent Agent to locate the server, the end user must run the setup script to edit the configuration file for the Linux Persistent Agent.

To run the setup script, do the following:

  1. To stop the Linux Persistent Agent service type: $ sudo service bndaemon stop
  2. Run the setup script.
    1. Type $ cd /opt/com.bradfordnetworks/PersistentAgent
    2. Type $ sudo ./setup
    3. Enter the following configuration values from the setup:

      • Home Server: Enter the FQDN of your the FortiNAC Manager Application Server
      • Allowed Servers: Enter any other FortiNAC Manager servers the Agent would need to communicate with.
      • Restrict roaming: Restrict the agent to only communicate with servers listed in the Home Server and Allowed Servers fields.
  3. To start the Linux Persistent Agent service type: $ sudo service bndaemon start
Right-click options

Option

Description

About

Displays the agent version, copyright, and other information.

Show
Messages

Displays the list of the messages sent through the Persistent Agent that have been received by the host.

If any URLs have been sent separate from a message, a list of these are also be displayed.

Login

Appears when host is in isolation requiring registration or authentication. When selected, opens a login dialog.

Log off the Network

Appears when host is logged in and authenticated. When selected, the host is logged off the network and is placed into isolation requiring authentication.

Show Network Access Status

Appears when the host is isolated for remediation or being disabled. When selected, the user is sent to either the remediation page for rescan or the dead end page if disabled.

Host firewall

When a host is running a firewall (iptables), the Persistent Agent will need the ports 4567, 4568 open in order to communicate with FortiNAC Manager.

Uninstall

On the host, use the following commands to remove the Persistent Agent:

  1. To uninstall rpm, type: $ sudo rpm -ev bni-persistent-agent
  2. To uninstall deb, type: $ sudo dpkg --purge bni-persistent-agent

Installation for Linux

Installation for Linux

When a host connects to the network, it is directed to a special web page that allows the user to download a rpm or deb package of the Persistent Agent. Once the Persistent Agent has been downloaded, it must be installed on the host.

Install
  1. On the host, locate the directory where the bni-persistent-agent-3.X.X.X-1.x86_64.rpm or bin-persistent-agent-3.X.X.X-1.amd64.deb was downloaded.
  2. To install the Persistent Agent package, do the following:
    1. To install rpm, type: $ sudo rpm -Uvh bni-persistent-agent-3.X.X.X-1.x86_64.rpm
    2. To install deb, type: $ sudo dpkg -i bni-persistent-agent-3.X.X.X-1.amd64.deb
  3. The Persistent Agent Icon appears.

    Several options are available when you click the icon:

    Option

    Description

    About

    Displays the agent version, copyright, and other information.

    Show
    Messages

    Displays the list of the messages sent through the Persistent Agent that have been received by the host.

    If any URLs have been sent separate from a message, a list of these are also be displayed.

    Login

    Appears when host is in isolation requiring registration or authentication. When selected, opens a login dialog.

    Log off the Network

    Appears when host is logged in and authenticated. When selected, the host is logged off the network and is placed into isolation requiring authentication.

    Show Network Access Status

    Appears when the host is isolated for remediation or being disabled. When selected, the user is sent to either the remediation page for rescan or the dead end page if disabled.

  4. The Agent automatically communicates with the FortiNAC Manager Application Server to authenticate the user’s credentials. Enter the User Name and Password, then click OK.

    The user is authenticated and registered.

If FortiNAC Manager’s DNS does contain the specific SRV records used by the Persistent Agent to locate the server, the end user must run the setup script to edit the configuration file for the Linux Persistent Agent.

To run the setup script, do the following:

  1. To stop the Linux Persistent Agent service type: $ sudo service bndaemon stop
  2. Run the setup script.
    1. Type $ cd /opt/com.bradfordnetworks/PersistentAgent
    2. Type $ sudo ./setup
    3. Enter the following configuration values from the setup:

      • Home Server: Enter the FQDN of your the FortiNAC Manager Application Server
      • Allowed Servers: Enter any other FortiNAC Manager servers the Agent would need to communicate with.
      • Restrict roaming: Restrict the agent to only communicate with servers listed in the Home Server and Allowed Servers fields.
  3. To start the Linux Persistent Agent service type: $ sudo service bndaemon start
Right-click options

Option

Description

About

Displays the agent version, copyright, and other information.

Show
Messages

Displays the list of the messages sent through the Persistent Agent that have been received by the host.

If any URLs have been sent separate from a message, a list of these are also be displayed.

Login

Appears when host is in isolation requiring registration or authentication. When selected, opens a login dialog.

Log off the Network

Appears when host is logged in and authenticated. When selected, the host is logged off the network and is placed into isolation requiring authentication.

Show Network Access Status

Appears when the host is isolated for remediation or being disabled. When selected, the user is sent to either the remediation page for rescan or the dead end page if disabled.

Host firewall

When a host is running a firewall (iptables), the Persistent Agent will need the ports 4567, 4568 open in order to communicate with FortiNAC Manager.

Uninstall

On the host, use the following commands to remove the Persistent Agent:

  1. To uninstall rpm, type: $ sudo rpm -ev bni-persistent-agent
  2. To uninstall deb, type: $ sudo dpkg --purge bni-persistent-agent