FortiNAC

The FortiNAC connector allows you to retrieve network access control (NAC) data including equipment inventory and connected client status directly into OverSOC.

Objective

The FortiNAC connector retrieves the following information:

• Inventory of network equipment managed by FortiNAC
• Status of connected clients and devices on the network
• NAC access policies and compliance rules applied

Prerequisites

• Administrator access to the FortiNAC console
• Sufficient permissions to generate API tokens
• Network connectivity to the FortiNAC server

Information to Provide in OverSOC

Procedure

Generate an API Token in FortiNAC

1. Sign in to the FortiNAC console as an administrator.
2. Go to Users & Hosts > Administrators.
3. Click Add or Modify user to select or create an administrator account.
4. Check the option Allow REST API Access for this Admin User.
5. The API token will be auto-generated and displayed.
6. Copy the token immediately (it will only be shown once).
7. Use Bearer Token authentication for API requests.

Retrieve the Server URL

1. The Server URL is the IP address or FQDN of your FortiNAC instance.
2. Example: https://192.168.1.100:8080 or https://fortinac.example.com
3. Verify the port used (default 8080 or 443).

Configure the Connector in OverSOC

1. In OverSOC, go to Data Sources Settings > Sources.
2. Select FortiNAC and click Configure.
3. Fill in the two required fields:
   • API Token: The auto-generated token from step 5 above.
   • Server URL: The base URL of your FortiNAC instance.
4. Click Save Configuration.

Official Documentation

For additional information, refer to the FortiNAC REST API - Generate an API Token documentation.

Required Permissions

The API token must have the following permissions:

• Read access to device inventory (Device Inventory)
• Read access to network compliance status
• Read access to NAC access policies
• Read access to events and alerts