Description This article describes how to use the CLI tool
'RemoteAccess' to determine if a VPN IP address is considered to be
managed. These IP addresses are used by FortiNAC to keep track of Active
VPN clients and IP addresses that may become activ...
Description This article describes how to correct the behavior outlined
below when using the Dissolvable agent to onboard VPN clients: VPN
client connects to SSL VPN or IPsec VPN. The user downloads the FortiNAC
Dissolvable agent from the registratio...
Description This article describes how to enable and disable debug
attributes for a single network device. Enabling this debug attribute on
a network device can provide verbose output for SSH, SNMP, and API
queries made by FortiNAC to a network devic...
Description This article describes how to mark all hosts that are
currently marked 'At-Risk' to 'Safe'. Hosts can be marked 'At-Risk' due
to a failed Endpoint Compliance Scan or by an Event to an Alarm action
that marks hosts 'At-Risk'. Scope FortiNA...
Description This article describes how to understand the reason for
seeing 'CONN_DENY' in agent logs. Scope FortiNAC Persistent Agent: 5.x,
9.x & 10.x. Solution With an endpoint with the FortiNAC Persistent Agent
services running and connected to the...
From the FortiNAC CLI you could search the output.master log for "failed
to connect". Failed to connect will print anytime that FortiNAC is
unable to connect to a network device via CLI credentials. grep -i
"failed to connect" /bsc/logs/output.master...