My preference would be HPE/Aruba's Clearpass product over either of these 2 products, although Clearpass really shines when using the Wireless Guest and OnBoarding functions. The authentication functionality is good and very complete with hooks to tie into external servers such as Google Admin Console for Chromebooks and JAMF for Apple devices.
I haven't seen the latest incarnation of ISE, but my understanding is that it is a complete product.
FortiNAC is the old Bradford Systems NAC solution. Fortinet has recently added the ability for it to be a standalone RADIUS server for wireless WPA2-Enterprise implementations.
Prior to that, it was essentially a MAC address repository that checked each device connecting to a network and then changed the VLAN for the device through SNMP and direct commands sent to the switches. Very old-school NAC.
I was hoping that perhaps the added RADIUS functionality would allow standard Wired-802.1x and wireless WPA2 functionality. Tested this at a customer a couple of months ago and it failed completely. Without that functionality, you will need a separate RADIUS server in addition to FortiNAC.
Fortinet FortiNAC and Cisco Identity Services Engine (ISE) compete in the network access control space. Cisco ISE appears to have an advantage due to its comprehensive security features and strong integration capabilities with Cisco products.Features: Fortinet FortiNAC is known for its granular network visibility, ease of use, and flexibility in integration across different environments. It offers features like automation, artificial intelligence, and robust device compliance checks. Cisco...
My preference would be HPE/Aruba's Clearpass product over either of these 2 products, although Clearpass really shines when using the Wireless Guest and OnBoarding functions. The authentication functionality is good and very complete with hooks to tie into external servers such as Google Admin Console for Chromebooks and JAMF for Apple devices.
I haven't seen the latest incarnation of ISE, but my understanding is that it is a complete product.
FortiNAC is the old Bradford Systems NAC solution. Fortinet has recently added the ability for it to be a standalone RADIUS server for wireless WPA2-Enterprise implementations.
Prior to that, it was essentially a MAC address repository that checked each device connecting to a network and then changed the VLAN for the device through SNMP and direct commands sent to the switches. Very old-school NAC.
I was hoping that perhaps the added RADIUS functionality would allow standard Wired-802.1x and wireless WPA2 functionality. Tested this at a customer a couple of months ago and it failed completely. Without that functionality, you will need a separate RADIUS server in addition to FortiNAC.
Hi @Sean Muller , @Manjil Bhetwal , @Ahmed-Fawzy and @Nayef Hamzeh. Possibly, you can assist here? Thank you!