Model Configuration
-
Login to the FortiNAC Administration UI and navigate to Network > Inventory.
-
Click on the newly added model and click the Model Configuration tab.
-
Fill in the fields as appropriate:
RADIUS Mode
Proxy (default)
RADIUS Primary Server
Applies to 802.1x authentication only: Either the default RADIUS server or a pre-configured RADIUS server must be selected. RADIUS servers are configured on the RADIUS Settings window.
RADIUS Secondary Server
Applies to 802.1x authentication only: Either the default RADIUS server or a pre-configured RADIUS server must be selected. RADIUS servers are configured on the RADIUS Settings window.
RADIUS Shared Secret
Required for both MAC and 802.1x authentication. Must match the value entered on the device itself and the value entered on the RADIUS settings window.
-
Click the Read VLANs button. This populates the drop-down lists for the different connection states, such as Registration. Data in the drop-down lists represents the VLANs created on the device.
-
Select a setting in Access Enforcement for each host state.
-
In the Access Value column select a VLAN for each host state desired to enforce.
-
In the Preferred Container field, select the Container in Topology which the Wireless Access Points should be placed as they are discovered.
-
Click Save.
-
Click Polling tab.
-
Enter the appropriate L2 (Hosts) Polling value (minutes) based on the chart below. For best performance, it is recommended not to go lower than the specified value.
Example:
Total number of Access Points modeled in Topology: 800
Acceptable values: 15, 20, 30, 60
Not recommended: 10, 5
Total Number of Access Points
Recommended Lowest Value
700 and below
10 minutes
800
15 minutes
1000
20 minutes
2000
30 minutes
2500
60 minutes