Device policies
Policies based on device identity enable you to implement policies according to device type. For example:
• Gaming consoles cannot connect to the company network or the Internet.
• Personal tablet and phone devices can connect to the Internet but not to company servers.
• Company-issued laptop computers can connect to the Internet and company servers. Web filtering and antivirus are applied.
• Employee laptop computers can connect to the Internet, but web filtering is applied. They can also connect to company networks, but only if FortiClient Endpoint Security is installed to protect against viruses.
Figure 296 and
Figure 297 show these policies implemented for WiFi to the company network and to the Internet.
The next section explains device policy creation in detail.