Fortinet black logo

FortiLink Guide

Home FortiSwitch 7.4.2 FortiLink Guide
7.4.2
7.4.2
7.4.1
7.4.0
7.2.6
7.2.4
7.2.1
7.2.0

Whatʼs new in FortiOS 7.4.2

Whatʼs new in FortiOS 7.4.2

The following list contains new managed FortiSwitchOS features added in FortiOS 7.4.2. Click on a link to navigate to that section for further information:

  • You can now use FortiLink with HTTPS to manage FortiSwitch units. When you are using FortiLink with HTTPS to manage FortiSwitch units, the same FortiLink features are supported as when you are using FortiLink with the CAPWAP protocol. Using FortiLink with HTTPS simplifies the management process and improves the user experience and efficiency. For more details, see FortiLink with HTTPS.

  • You can use new CLI commands to specify how the following RADIUS request attributes are formatted:

    • User-Name

    • User-Password

    • Called-Station-Id

    • Calling-Station-Id

    For more details, see Specifying how RADIUS request attributes are formatted.

  • You can now assign a priority to each VLAN used in the 802.1X security policy. If there is more than one VLAN with the same name (specified in the set description command), FortiSwitchOS selects the VLAN with the lowest assignment-priority value (which is the highest priority) of the VLANs with names that match the value of the RADIUS Tunnel-Private-Group-Id or Egress-VLAN-Name attribute. The assignment-priority value can be 1-255. By default, the assignment-priority is 128. The lowest assignment-priority value gets the highest priority. For more details, see Setting the priority for dynamic or egress VLAN assignment.

  • When a FortiSwitch unit is capable of forward error correction (FEC), the default setting for fec-state is now detect-by-module, which automatically detects whether FEC is supported by the module. For more details, see Configuring forward error correction on switch ports.

  • You can now dynamically assign a different NAS-IP-Address attribute to the managed switches when authenticating users with a RADIUS server. If needed, you can override the dynamic assignment and manually assign the NAS-IP-Address attribute to individual managed switches. NOTE: FortiSwitchOS supports only IPv4 addresses for the NAS-IP-Address attribute. For more details, see Dynamically and manually assigning the NAS-IP-Address attribute.

Previous
Next

Whatʼs new in FortiOS 7.4.2

The following list contains new managed FortiSwitchOS features added in FortiOS 7.4.2. Click on a link to navigate to that section for further information:

  • You can now use FortiLink with HTTPS to manage FortiSwitch units. When you are using FortiLink with HTTPS to manage FortiSwitch units, the same FortiLink features are supported as when you are using FortiLink with the CAPWAP protocol. Using FortiLink with HTTPS simplifies the management process and improves the user experience and efficiency. For more details, see FortiLink with HTTPS.

  • You can use new CLI commands to specify how the following RADIUS request attributes are formatted:

    • User-Name

    • User-Password

    • Called-Station-Id

    • Calling-Station-Id

    For more details, see Specifying how RADIUS request attributes are formatted.

  • You can now assign a priority to each VLAN used in the 802.1X security policy. If there is more than one VLAN with the same name (specified in the set description command), FortiSwitchOS selects the VLAN with the lowest assignment-priority value (which is the highest priority) of the VLANs with names that match the value of the RADIUS Tunnel-Private-Group-Id or Egress-VLAN-Name attribute. The assignment-priority value can be 1-255. By default, the assignment-priority is 128. The lowest assignment-priority value gets the highest priority. For more details, see Setting the priority for dynamic or egress VLAN assignment.

  • When a FortiSwitch unit is capable of forward error correction (FEC), the default setting for fec-state is now detect-by-module, which automatically detects whether FEC is supported by the module. For more details, see Configuring forward error correction on switch ports.

  • You can now dynamically assign a different NAS-IP-Address attribute to the managed switches when authenticating users with a RADIUS server. If needed, you can override the dynamic assignment and manually assign the NAS-IP-Address attribute to individual managed switches. NOTE: FortiSwitchOS supports only IPv4 addresses for the NAS-IP-Address attribute. For more details, see Dynamically and manually assigning the NAS-IP-Address attribute.

Previous
Next