FortiNAC

Demo Walkthrough
October 2018

© Copyright Fortinet Inc. All rights reserved.

Agenda

 Demonstrate Dashboard View and Navigation.

 Visibility
» Network
» Endpoints
 Control
» Policies
» Enforcement
 Response
» Integration
» Rules

2
Visibility: Agentless Data Collection
Information gathered from multiple sources

FortiNAC

Protocols:
SNMP CLI Radius Syslog API

Switch Router Access Firewall SIEM IDS/IPS

Point

3
Dashboard

 Dashboard
» Once you login the first thing you are going to see is the dashboard
» Show how you can customize the panels on the dashboard , add remove panel.
» Talk about Security Summary Panel and the details it provides about the security
events from Security devices such as firewalls.
» Show the Network Device Summary panel and click on the Error on the Switch and
show how you can easily navigate to more details about the device and the error.
» Similarly talk about the host summary and the drilled down menu by clicking the
Total Unregistered hosts.
 Bookmarks
» Browse to Network Topology or any other menu and show how you can bookmark
pages for easy access.

4
Admin Users

 Click Users -> Admin Profiles and show the granular permission
that can be set.
 Click Users and show how admin users are then mapped to the
profiles or profile groups
 Show host and port control
 Show the landing page
 Show Admin Profile and Admin group

5
Visibility

 Click Network Device -> Topology and show the Topology Tree
with the Top Folder as the Customer and how each location can be
created under the Demo Customer and show the results panel on
the right.
 Right Click on the FortiDemo LAB container and show how to add a
single device and also using the Start Discovery tab.
 Expand the FortiDemo_LAB Container to display the devices in
the network .
 Click the Ports and /or SSIDs and click Update on the filter
selection to see the list of ports /SSIDs in the network.
6
Visibility - Polling

 Click Network Device -> L2 Polling and explain polling

mechanism to get host updates on location, link traps, Schedule
tasks.
 Click Set polling and show that the detail is set to every hour for
wired and 10 minutes for wireless and can be changed. Also
show manual polling.
 Similarly show l3 Polling that is used to update the host record.

7
Visibility – DHCP Fingerprinting

 Click Hosts -> Adapter View and Select a device and walk
through Creating a Device profiling rule and Select DHP
fingerprinting under Methods tab.
 Show how it is able to gather Hostname, Operating System and
other information.

8
Network Topology

 Show how the Customer location is mapped into Containers and

how devices are added to these container.
 Show the use of SNMP to grab details about the device for
visibility and control

9
Control

 Click Policy - > Policy configuration - > Endpoint Compliance.

 Walkthrough the IoT Profile
 Click Scans and show the endpoint compliance scan.
 Show we can also do custom scans that will look for a specific file
a specific running process or do domain verification checks

10
Control

 Click Policy - > Policy configuration - > Network Access

 Show the Access control policy, VLAN configuration and the host
profile.
 Click Policy ->Policy configuration -> Portal and what thro the
onboarding and guest management.
 Show the various customization options available.

11
Response:

 Click Security Rules on the Policy tab and Edit the IoT_ICO
trigger rule
 Walkthrough the Trigger Creation under Trigger : and also The
Action :
 Show how multiple Trigger rules can be created and assigned
 Show how multiple Actions can be set.
 Also show how email notification can be set.

12
Analytics:

 Launch Analytics from the FortiNAC demo page

 Show different reports from the Analytics Page
 Explain how Historical data can help with build IoT/ BYOD
strategy.

13