Help
FortiNAC
NOTE: FortiNAC is now named FortiNAC-F. For post-9.4 articles, see FortiNAC-F. FortiNAC is a zero-trust network access solution that provides users with enhanced visibility into the Internet of Things (IoT) devices on their enterprise networks.
FortiKoala
Staff
Staff

Created on ‎09-28-2018 02:56 AM

Article Id 193660

Technical Note: Not switching VLANs on wired switch to isolation

Description
When an unknown (rogue) device connects to a switch port, the VLAN does not change to the appropriate isolation VLAN:
Registration
Remediation
Authentication
DeadEnd

Scope
Version: All
Solution
Confirm the following:
  • VLANs being used for isolation are already created on the switch.
  • VLAN ID section in switch's Model Configuration in Topology is populated with the appropriate VLANs.
  • Credentials used to access the switch are correct.  Under the Credentials tab of the switch model, click Validate Credentials
  • Ports are in the appropriate enforcement group (e.g. Forced Registration, Forced Remediation, Forced Authentication).  Select a port under Ports tab, right-click and select Group Membership.
  • The port is not a member of the Access Point Management Group.
  • Port does not display in Topology Port view as an Uplink.
  • The host shows as online in Host or Adapter View.

Related Articles

Technical Note: Not switching VLANs on wired switch to production network

Technical Note: Troubleshooting SNMP communication issues

Technical Note: Troubleshooting CLI credential failure

Labels:
924
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.