We currently use identity based rules with the FortiNet product (physical firewall) and want to feed username/IP info from their collector (which works very well) into NSX-Ts identity based fw to be able to use id based rules with VRA.
We are exploring NSX options rather than having to automate rules on the fortiGate FW. Can we feed AD ip/username data into NSX? Is there a way possibly via API to feed NSX this information?
Edit: can someone confirm our suspicion that guess introspection is the only way nst-t can update it's u see up mappings out of the box ? Meaning that there is no active directory log scraping in nsx-t?
NSX-T IDFW is only for VDI/RDSH and there is no log scraping functionality yet.