Description
This article describes how to add a device to a topology in FortiNAC using an existing model.
Scope
Any supported version of FortiNAC.
Solution
Discovered devices displaying a ? icon indicate the currently running FortiNAC system version does not have a mapping for that device's System OID (meaning the device is not supported). When a device is mapped to an existing System OID, the CLI commands and SNMP OIDs used for the existing model are used for performing the same functions on the new device (L2/L3 Polling, Reading and Switching VLANs).
Note: All devices with the same OID will be mapped when this is selected if it has not already been mapped as a Generic SNMP Device or Device Type. This OID will have all properties copied from an existing Device Model.
Steps:
1) 'Right-click' the model displaying the ? icon and select Set Device Mapping.
2) In the window that appears, select Model this OID from an Existing Device. A list of mappings that match the vendor of the selected unknown device will be displayed.
3) Select one that best matches the device with the ? icon.
4) Select OK.
5) Confirm the mapping works as expected.
- Perform L2 Polling and review the MAC address information in the Ports view of connected hosts.
- 'Right-click' on a model and select Network Access/VLANs and read the VLANs.
- Verify VLANs switch appropriately by connecting a host to a port under enforcement.
- Run Test Device Mapping.
A new window will appear containing the information for L2/L3 polling and VLANs:
MAC Address Table ( L2 Poll )
------------------------------------------------------------
Port Index : 10 MAC Address : 80:5E:C0:D6:6F:39
Port Index : 10 MAC Address : 70:4C:A5:B1:82:30
Port Index : 10 MAC Address : 70:4C:A5:15:57:FB
IP->MAC Address ( L3 Poll )
------------------------------------------------------------
MAC Address: 80:5E:C0:D6:6F:39 IP Address : 10.5.40.11
MAC Address: 70:4C:A5:15:57:FA IP Address : 10.5.32.55
MAC Address: 70:4C:A5:B1:82:30 IP Address : 192.168.1.2
Supported VLANs
------------------------------------------------------------
VLAN Name : VLAN_511 ID: 511
VLAN Name : VLAN_514 ID: 514
VLAN Name : VLAN_513 ID: 513
VLAN Name : VLAN_512 ID: 51
------------------------------------------------------------
Port Index : 10 MAC Address : 80:5E:C0:D6:6F:39
Port Index : 10 MAC Address : 70:4C:A5:B1:82:30
Port Index : 10 MAC Address : 70:4C:A5:15:57:FB
IP->MAC Address ( L3 Poll )
------------------------------------------------------------
MAC Address: 80:5E:C0:D6:6F:39 IP Address : 10.5.40.11
MAC Address: 70:4C:A5:15:57:FA IP Address : 10.5.32.55
MAC Address: 70:4C:A5:B1:82:30 IP Address : 192.168.1.2
Supported VLANs
------------------------------------------------------------
VLAN Name : VLAN_511 ID: 511
VLAN Name : VLAN_514 ID: 514
VLAN Name : VLAN_513 ID: 513
VLAN Name : VLAN_512 ID: 51
All functions tested in step 5 should work as expected. If this is not the case or the test returns an empty result, check if newer code versions added support. See this article for more information.
