Fortinet black logo

FortiSwitch Integration

Home FortiNAC-F 7.2.0 FortiSwitch Integration
7.2.0
7.4.0
7.2.0

Validate Visibility

Validate Visibility

  1. Poll the newly added devices to read the device’s MAC address table (L2 Poll) and ARP cache (L3 Poll) if applicable.

    • Standalone Mode: Click the Polling tab in the right panel of the FortiSwitch model and click Poll Now next to L2 (Hosts) Polling.

    • FortiLink Mode: Click the Polling tab in the right panel of the FortiGate model.

      • Click Poll Now next to L2 (Hosts) Polling

      • Click Poll Now next to L3 (IP à MAC) Polling

  2. Click on the Ports tab of the FortiSwitch (Standalone Mode) or FortiGate (FortiLink Mode).

  3. Review the values populated for each port (Label, Connection State, etc) and verify they are accurate. FortiLink ports: Ports connecting back to FortiGate in FortiLink mode display a Connection State of Learned Uplink.

    For details regarding this view, see Ports view in the Administration Guide.

    Note: Current VLAN values may not be accurate for switches authenticating using RADIUS. At this time, the port view only allows for a single port-based VLAN to be displayed for the Current VLAN. This VLAN usually does not match the dynamic VLAN assigned to the clients that have authenticated using RADIUS.

  4. If the Adapter tab is not already visible, click the Show Details Panel button at the bottom of the window.

  5. Verify connection information for endpoints currently connected to those is accurate by clicking on one of the ports showing a connection. The adapter tab below should reflect the correct Adapter Status, Host Status, IP Address, Physical (MAC) Address, Location and Access Value. If connection information is not correct, see Inaccurate Port Connection Information in the Troubleshooting section.

Once visibility has been successfully validated, proceed to Configure Enforcement.

Previous
Next

Validate Visibility

  1. Poll the newly added devices to read the device’s MAC address table (L2 Poll) and ARP cache (L3 Poll) if applicable.

    • Standalone Mode: Click the Polling tab in the right panel of the FortiSwitch model and click Poll Now next to L2 (Hosts) Polling.

    • FortiLink Mode: Click the Polling tab in the right panel of the FortiGate model.

      • Click Poll Now next to L2 (Hosts) Polling

      • Click Poll Now next to L3 (IP à MAC) Polling

  2. Click on the Ports tab of the FortiSwitch (Standalone Mode) or FortiGate (FortiLink Mode).

  3. Review the values populated for each port (Label, Connection State, etc) and verify they are accurate. FortiLink ports: Ports connecting back to FortiGate in FortiLink mode display a Connection State of Learned Uplink.

    For details regarding this view, see Ports view in the Administration Guide.

    Note: Current VLAN values may not be accurate for switches authenticating using RADIUS. At this time, the port view only allows for a single port-based VLAN to be displayed for the Current VLAN. This VLAN usually does not match the dynamic VLAN assigned to the clients that have authenticated using RADIUS.

  4. If the Adapter tab is not already visible, click the Show Details Panel button at the bottom of the window.

  5. Verify connection information for endpoints currently connected to those is accurate by clicking on one of the ports showing a connection. The adapter tab below should reflect the correct Adapter Status, Host Status, IP Address, Physical (MAC) Address, Location and Access Value. If connection information is not correct, see Inaccurate Port Connection Information in the Troubleshooting section.

Once visibility has been successfully validated, proceed to Configure Enforcement.

Previous
Next