Help
FortiNAC
NOTE: FortiNAC is now named FortiNAC-F. For post-9.4 articles, see FortiNAC-F. FortiNAC is a zero-trust network access solution that provides users with enhanced visibility into the Internet of Things (IoT) devices on their enterprise networks.
FortiKoala
Staff
Staff

Created on ‎09-27-2018 07:45 AM Edited on ‎08-28-2023 05:57 AM By Moderator

Article Id 198111

Technical Tip: Whitelist Windows Machines from Endpoint Compliance Scans for a Specific VLAN

Description

 
This article describes the Whitelist Windows Machines from Endpoint Compliance Scans for a Specific VLAN.


Solution

 
Example: Do not scan student-owned Windows devices during the registration onboarding process.

Solution: Modify the existing Student endpoint compliance posture checking policy to not require the scanning of student-owned devices (Windows machines).

The following steps assume the criteria used for matching the Network Access Policy assigning Student VLAN is used for the Endpoint Compliance Policy (same User/Host Profile).

  1. Navigate to Policy & Objects -> Endpoint Compliance.
  2. Modify the Endpoint Compliance Policy for Students.
  3. Modify the  Endpoint Compliance Configuration for Student (select and Modify).
  4. Select the Agent tab.
  5. Set the Windows to 'None - Bypass'.
  6. Select OK.

compliance.PNG
Labels:
271
0 Kudos
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.