NAC policy enhanced with FortiLink settings, LAN segments, and NAC policy tags 7.2.1
In FortiManager 7.2.1, NAC policies are enhanced with FortiLink settings (with VDOM support), LAN Segments, and NAC policy tags.
To create a new FortiLink Setting template:
- Go to FortiSwitch Manager > FortiSwitch Templates > FortiLink Settings, and click Create New.
- Configure the details of the FortiLink Settings template, including the Name, NAC VLAN Segmentation, Primary Interface, Onboarding VLAN, and Segment VLANs.
- Click OK to save the template.
- Go to FortiSwitch Manager > FortiSwitch Templates > VDOM Settings to assign the FortiLink Settings template to a FortiGate in NAC Settings.
- Install the FortiLink settings to FortiGate using the Install Wizard.
To configure NAC policy tags:
- Dynamic Firewall Address with the Switch Controller NAC Policy Tag Sub Type can be created or edited in Policy & Objects > Object Configurations > Firewall Objects > Addresses.
- The configured firewall address can be used in Policy & Objects > Policy Packages > NAC Policy > Switch Controller Action > Assign Device to Dynamic Address.
- The NAC policy change can be installed to FortiGate using the Install Wizard's Install Policy Packages & Device Settings option.