Chapter 14 Managing Devices for FortiOS 5.0 : Managing “bring your own device” : Device policies
  
Device policies
Policies based on device identity enable you to implement policies according to device type. For example:
Gaming consoles cannot connect to the company network or the Internet.
Personal tablet and phone devices can connect to the Internet but not to company servers.
Company-issued laptop computers can connect to the Internet and company servers. Web filtering and antivirus are applied.
Employee laptop computers can connect to the Internet, but web filtering is applied. They can also connect to company networks, but only if FortiClient Endpoint Security is installed to protect against viruses.
Figure 296 and Figure 297 show these policies implemented for WiFi to the company network and to the Internet.
Figure 296: Device policies for WiFi access to the company network
 
Figure 297: Device policies for WiFi access to the Internet
The next section explains device policy creation in detail.