Fortinet black logo

Cisco Meraki Wired Integration

Home FortiNAC-F 7.2.0 Cisco Meraki Wired Integration
7.2.0
7.4.0
7.2.0

Visibility

Visibility

Note: FortiNAC only collects IP to MAC information (L3 poll) from MX routers.

Configure MX Router

API Key

Obtain the API Key (this will be used in the FortiNAC Model Configuration). Once generated, the same API Key can be used in multiple devices. If the API key has not already been generated, do the following:

  1. Navigate to Organization > Settings

  2. Under Dashboard API access, select Enable access to the Cisco Meraki Dashboard API

  3. Click Profile link

  4. Under API Access, click Create new API key

  5. Copy the generated key and save to a file

Serial Number

Obtain router Serial Number (this will be used in the FortiNAC Model Configuration).

  1. Navigate to Security Appliance > Appliance

  2. Copy the Serial Number and save to a file

SNMP

Configure SNMP access to allow for FortiNAC device discovery. Under the Network-wide > General > Reporting section, allow either v1/v2 or v3 access

Configure FortiNAC

Model the Device

In the FortiNAC Administration UI, navigate to Network > Inventory and discover or add the Meraki switch. Use the SNMP values previously configured on the Meraki switch. For instructions see Add or modify a device or Discovery (for multiple devices) in the Administration Guide.

Note:

  • The MX will not display ports. This is normal.

  • If a “?” appears as the icon, then support needs to be added for that device. See KB article 198477 to add the device using an existing model.

Device Model Configuration

  1. Select the newly added model and click the Credentials tab.

  2. Fill in the following and Save:

  • User Name: <Serial Number >

  • Password: <REST API Key>

  1. Right click on the model and select Group Membership.

  2. Select the box next to L3 (IP-->MAC) and click OK.

  3. Click the Polling tab.

  4. Select the box next to L3 (IPàMAC) Polling and set the interval to 30 minutes.

Click Poll Now. Verify the timestamps for Last Successful Poll and Last Attempted Poll update to the current time.

Validate Visibility

Verify FortiNAC is properly reading the ARP cache of the Meraki MX.

  1. In the FortiNAC Administration UI, navigate to Users & Hosts > Adapters.

  2. In the right hand search field, enter an IP address for which the MX should have ARP cache entry. Alternatively, a wildcard can be used to search for a subnet (example: 192.168.5.*). For other search and filter options, see Filters in the Administration Guide.

  3. Review the IP address values for the adapter(s) and verify they are accurate.

    If unexpected results occur, see Troubleshooting.

Previous
Next

Visibility

Note: FortiNAC only collects IP to MAC information (L3 poll) from MX routers.

Configure MX Router

API Key

Obtain the API Key (this will be used in the FortiNAC Model Configuration). Once generated, the same API Key can be used in multiple devices. If the API key has not already been generated, do the following:

  1. Navigate to Organization > Settings

  2. Under Dashboard API access, select Enable access to the Cisco Meraki Dashboard API

  3. Click Profile link

  4. Under API Access, click Create new API key

  5. Copy the generated key and save to a file

Serial Number

Obtain router Serial Number (this will be used in the FortiNAC Model Configuration).

  1. Navigate to Security Appliance > Appliance

  2. Copy the Serial Number and save to a file

SNMP

Configure SNMP access to allow for FortiNAC device discovery. Under the Network-wide > General > Reporting section, allow either v1/v2 or v3 access

Configure FortiNAC

Model the Device

In the FortiNAC Administration UI, navigate to Network > Inventory and discover or add the Meraki switch. Use the SNMP values previously configured on the Meraki switch. For instructions see Add or modify a device or Discovery (for multiple devices) in the Administration Guide.

Note:

  • The MX will not display ports. This is normal.

  • If a “?” appears as the icon, then support needs to be added for that device. See KB article 198477 to add the device using an existing model.

Device Model Configuration

  1. Select the newly added model and click the Credentials tab.

  2. Fill in the following and Save:

  • User Name: <Serial Number >

  • Password: <REST API Key>

  1. Right click on the model and select Group Membership.

  2. Select the box next to L3 (IP-->MAC) and click OK.

  3. Click the Polling tab.

  4. Select the box next to L3 (IPàMAC) Polling and set the interval to 30 minutes.

Click Poll Now. Verify the timestamps for Last Successful Poll and Last Attempted Poll update to the current time.

Validate Visibility

Verify FortiNAC is properly reading the ARP cache of the Meraki MX.

  1. In the FortiNAC Administration UI, navigate to Users & Hosts > Adapters.

  2. In the right hand search field, enter an IP address for which the MX should have ARP cache entry. Alternatively, a wildcard can be used to search for a subnet (example: 192.168.5.*). For other search and filter options, see Filters in the Administration Guide.

  3. Review the IP address values for the adapter(s) and verify they are accurate.

    If unexpected results occur, see Troubleshooting.

Previous
Next