Technical Tip: Manually resume control to primary ...

khoffman · 05-15-2024

Description This article describes how to use the CLI tool 'RemoteAccess' to determine if a VPN IP address is considered to be managed. These IP addresses are used by FortiNAC to keep track of Active VPN clients and IP addresses that may become activ...

khoffman · 05-14-2024

Description This article describes how to correct the behavior outlined below when using the Dissolvable agent to onboard VPN clients: VPN client connects to SSL VPN or IPsec VPN. The user downloads the FortiNAC Dissolvable agent from the registratio...

khoffman · 05-01-2024

Description This article describes how to enable and disable debug attributes for a single network device. Enabling this debug attribute on a network device can provide verbose output for SSH, SNMP, and API queries made by FortiNAC to a network devic...

khoffman · 04-29-2024

Description This article describes how to mark all hosts that are currently marked 'At-Risk' to 'Safe'. Hosts can be marked 'At-Risk' due to a failed Endpoint Compliance Scan or by an Event to an Alarm action that marks hosts 'At-Risk'. Scope FortiNA...

khoffman · 04-26-2024

Description This article describes how to understand the reason for seeing 'CONN_DENY' in agent logs. Scope FortiNAC Persistent Agent: 5.x, 9.x & 10.x. Solution With an endpoint with the FortiNAC Persistent Agent services running and connected to the...

khoffman · 05-18-2022

From the FortiNAC CLI you could search the output.master log for "failed to connect". Failed to connect will print anytime that FortiNAC is unable to connect to a network device via CLI credentials. grep -i "failed to connect" /bsc/logs/output.master...

User Statistics

User Activity

Troubleshooting Tip: Viewing managed VPN addresses from the CLI

Technical Tip: Dissolvable agent on VPN causes disconnect after scan completion.

Troubleshooting Tip: Debugs to enable for troubleshooting network device integrations

Technical Tip: Mark all 'At-Risk' hosts to 'Safe'

Troubleshooting Tip: Agent is not communicating and agent logs show 'CONN_DENY'

Re: Script in CLI to Validate Credentials for all interfaces

Technical Tip: Manually resume control to primary ...

Technical Tip: Unable to register host with spaces...

Troubleshooting Tip: Database replication fails du...

Troubleshooting Tip: FortiNAC is unable to L2 poll...

Technical Tip: How to configure & use API token to...

KCS