Help
FortiNAC
NOTE: FortiNAC is now named FortiNAC-F. For post-9.4 articles, see FortiNAC-F. FortiNAC is a zero-trust network access solution that provides users with enhanced visibility into the Internet of Things (IoT) devices on their enterprise networks.
cmaheu
Staff
Staff

Created on ‎12-07-2018 10:54 AM

Article Id 198602

Technical Note: VLAN assignment issues with AerohiveNG

Description
AerohiveNG clients not being moved to the appropriate VLAN.  Instead, they are moved to the SSID's default VLAN.

FortiNAC includes the Tunnel-Private-Group-Id RADIUS attribute within the RADIUS response to assign the appropriate network access. The Tunnel-PrivateGroup-Id value is a specific User Profile ID created within Aerohive.   

AerohiveNG changed their operation such that it expects to receive a Filter-Id as opposed to a Tunnel-Private-Group-Id.  This change prevents Aerohive from assigning the VLAN specified by FortiNAC, and sets the SSID's Default VLAN instead.



Solution
Configure AeroHiveNG to use the Tunnel-Private-Group-Id information.  Refer to the VLANs/Profiles section of the reference manual Aerohive Wireless Access Points Integration Guide in the Document Library.


Labels:
677
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.