FortiLink NAC is a rules-based network access control system that automates the onboarding of devices onto the local area network (LAN). It ensures that each device is placed in the appropriate security context by leveraging the integrated security and networking controls of the FortiGate Next-Generation Firewall (NGFW). This allows for effective management of device access as they connect to the network.

When a device connects to the network, FortiLink NAC uses a set of prioritized, user-configurable rules to determine the appropriate action. Initially, the device is placed in an onboarding virtual LAN (VLAN) while its security posture is assessed. This ensures that no traffic is allowed to pass to the broader network until the device meets the necessary security requirements.

Organizations face several challenges in managing network access, particularly due to the increasing number of personal and IoT devices connecting to enterprise networks. The complexity arises from the need to securely onboard a diverse range of devices, including BYOD items and headless IoT devices, which often lack robust security features. Additionally, IT teams must balance quick access for users with stringent security protocols, making effective network access control essential.