Re: FortiNAC and Domain Joined Computers
☼ Best Answerby bmduncan34 2020/11/20 05:02:25
that is a bit difficult because for parts of FortiNAC to work you need an IP address first.
you could do this with dot1x and using machine authentication but that isn't really FortiNAC usually way of working.
personally i would say why not allow access in a limited access VLAN first, let the FortiNAC agent do it's work and if ok move to the trusted network? a bit different way of thinking, but it gets the job done.