Device monitoring
The FortiGate unit can monitor your networks and gather information about the devices operating on those networks. Collected information includes:
• Whether the device is currently online
• MAC address
• IP address
• Operating system
• Hostname
• User
• How long ago the device was detected and on which FortiGate interface
• Whether FortiClient is installed on the device
You can go to User & Device > Device > Device Definitions to view this information.
Device monitoring is enabled separately on each interface.
To configure device monitoring
1. Go to System > Network > Interfaces and edit a FortiGate interface to use for device monitoring.
2. Under Device Management select Detect and Identify Devices.
3. If you plan to use the Vulnerability scanner to scan discovered devices for vulnerabilities, select Add New Devices to Vulnerability Scan List.
4. Select OK.
5. Repeat for all interfaces to use for device monitoring.
To edit device information
1. Go to User & Device > Device > Device Definitions and double-click the entry to edit it.
2. Enter an Alias to identify the device.
This is step is compulsory. The alias replaces the MAC address in the device list.
3. If the device can have more than on MAC address, add them to the device.
4. Optionally add the device to a custom device group.
5. Change other information as needed.
6. Select OK.
To add a device manually
1. Go to User & Device > Device > Device Definitions and select Create New.
2. Enter the following information.
• Alias (required)
• MAC address
• Device Type
3. Optionally, add additional MAC addresses, select a Custom Group and enter Comments.
4. Select OK.