Fortinet black logo

FortiSwitch Integration

Home FortiNAC-F 7.2.0 FortiSwitch Integration
7.2.0
7.4.0
7.2.0

FortiSwitch FortiLink Integration

FortiSwitch FortiLink Integration

Requirements

FortiNAC

  • Supported Engine Version: 8.3.2 or greater

  • Recommended Engine Version: 8.8.5 or greater

  • Multiple VDOM/Split-Task VDOM support: Version 8.8.8, 9.1.2 or greater

  • FOS 7.2/7.3 support: Version 9.1.7, 9.2.5, 9.4.0 or greater

  • FOS 7.4 support:

  • Syslog Support: Version 9.4.6, F7.2.6

  • All other configurations: Version 9.4.4, 7.2.4 or greater

  • MAC Notification Trap Support: Version 9.2.7, 9.4.2, F7.2.1 or greater

FortiGate

  • Support Firmware Version: 6.0.5 or greater.

  • Recommended Firmware Version:

    • 6.2: 6.2.8 or greater

    • 7.0: (if using post-login banner) Requires FortiNAC 8.8.8 or greater. See KB article 193514 for details

  • FortiNAC managing multiple FortiGates:

    • FortiSwitch IP addresses must be routable

    • FortiSwitch IP addresses must be unique

  • TLSv1-3 Support

    • FortiNAC version 9.2.5, 9.4.0 and greater: Tlsv1-3 is supported.

    • FortiNAC version 9.2.4 and lower: Tlsv1-3 is not supported. Enable FortiGate admin-https-ssl-versions tlsv1-2.

  • SNMP community or account

  • Administrator account

    • Visibility only: System read access to all VDOMs

    • Control: System read/write access to all VDOMs

  • The same RADIUS server settings cannot be used when FortiNAC is managing RADIUS connections for FortiSwitches in Link Mode and FortiAPs through the same FortiGate. RADIUS is sourced differently for the two devices and require unique RADIUS server configurations.

  • FortiNAC currently supports one VLAN instance per FortiLink port per VDOM.

FortiSwitch

  • SNMP community or account

  • Valid IP address (not 169.x.x.x) for switches configured for RADIUS authentication or SNMP Traps sent to FortiNAC

  • MAC Notification Trap Support: FortiOS 7.2 or greater

Previous
Next

FortiSwitch FortiLink Integration

Requirements

FortiNAC

  • Supported Engine Version: 8.3.2 or greater

  • Recommended Engine Version: 8.8.5 or greater

  • Multiple VDOM/Split-Task VDOM support: Version 8.8.8, 9.1.2 or greater

  • FOS 7.2/7.3 support: Version 9.1.7, 9.2.5, 9.4.0 or greater

  • FOS 7.4 support:

  • Syslog Support: Version 9.4.6, F7.2.6

  • All other configurations: Version 9.4.4, 7.2.4 or greater

  • MAC Notification Trap Support: Version 9.2.7, 9.4.2, F7.2.1 or greater

FortiGate

  • Support Firmware Version: 6.0.5 or greater.

  • Recommended Firmware Version:

    • 6.2: 6.2.8 or greater

    • 7.0: (if using post-login banner) Requires FortiNAC 8.8.8 or greater. See KB article 193514 for details

  • FortiNAC managing multiple FortiGates:

    • FortiSwitch IP addresses must be routable

    • FortiSwitch IP addresses must be unique

  • TLSv1-3 Support

    • FortiNAC version 9.2.5, 9.4.0 and greater: Tlsv1-3 is supported.

    • FortiNAC version 9.2.4 and lower: Tlsv1-3 is not supported. Enable FortiGate admin-https-ssl-versions tlsv1-2.

  • SNMP community or account

  • Administrator account

    • Visibility only: System read access to all VDOMs

    • Control: System read/write access to all VDOMs

  • The same RADIUS server settings cannot be used when FortiNAC is managing RADIUS connections for FortiSwitches in Link Mode and FortiAPs through the same FortiGate. RADIUS is sourced differently for the two devices and require unique RADIUS server configurations.

  • FortiNAC currently supports one VLAN instance per FortiLink port per VDOM.

FortiSwitch

  • SNMP community or account

  • Valid IP address (not 169.x.x.x) for switches configured for RADIUS authentication or SNMP Traps sent to FortiNAC

  • MAC Notification Trap Support: FortiOS 7.2 or greater

Previous
Next