Fortinet black logo

New Features

Home FortiAnalyzer 7.0.0 New Features

Security Fabric authorization 7.0.1

7.0.0
7.4.0
7.2.0
7.0.0
6.4.0
6.2.3
6.2.2
6.2.1
6.2.0
Copy Link
Copy Doc ID 6dd8af04-513d-11eb-b9ad-00505692583a:428130
Download PDF

Security Fabric authorization 7.0.1

Firewall administrators now can directly authorize FortiGate device for central logging to remote FortiAnalyzer during the setup.

In the following example, a FortiGate-40F is configured to send logs to a FortiAnalyzer-200F. Both devices are on version 7.0.1.

To authorize a FortiGate device using OAUTH:
  1. On FortiAnalyzer, go to System Settings > Admin > Admin Settings.
    A new Fabric Authorization setting has been added. By default, the Authentication Address field is empty.
  2. Under Fabric Authorization, enter the following:
    • Authorization Address: Enter the IP address which will be used by the FortiGate authorization window to access FortiAnalyzer.
    • Authorization Port: Select the port. In this example, the default port 443 is used.
  3. On the FortiGate, go to Log & Report > Log Settings, and enable Send logs to FortiAnalyzer/FortiManager. Enter the IP address of the FortiAnalyzer in the Server field.
  4. After the configuration is saved, the FortiAnalyzer Status window is displayed. Click Authorize.
    The authorization window is displayed.
  5. Enter your FortiAnalyzer login credentials, and click Login.

    After logging in, the authorization window allows administrators to authorize the FortiGate on FortiAnalyzer. At this time the FortiGate is listed as an unauthorized device in the Device Manager on FortiAnalyzer.

    Click on the FortiGate to view its details.

    You can approve or deny the authorization request.
    1. To approve the request, select Approve in the authorization window, and click OK.
      The FortiGate device is authorized on FortiAnalyzer.
    2. To deny the request, select Deny in the authorization window, and click OK.
      The FortiGate device is deleted from the unregistered table on FortiAnalyzer.
  6. If the admin closes the FortiAnalyzer Status window that appears in step four without authorizing a device, a button to authorize the FortiGate on FortiAnalyzer is displayed in two places:
    1. FortiGate Log Settings: In Log &Report > Log Settings, select Authorize to begin the authorization process.
    2. Security Fabric: In Security Fabric > Fabric Connectors, right click on the FortiAnalyzer Logging connector, and select Edit.

      Click Authorize to begin the authorization process.
Previous
Next

Related Videos

sidebar video

Authorizing FortiGate with FortiAnalyzer 7.0.2

  • 1,633 views
  • 2 years ago

Security Fabric authorization 7.0.1

Firewall administrators now can directly authorize FortiGate device for central logging to remote FortiAnalyzer during the setup.

In the following example, a FortiGate-40F is configured to send logs to a FortiAnalyzer-200F. Both devices are on version 7.0.1.

To authorize a FortiGate device using OAUTH:
  1. On FortiAnalyzer, go to System Settings > Admin > Admin Settings.
    A new Fabric Authorization setting has been added. By default, the Authentication Address field is empty.
  2. Under Fabric Authorization, enter the following:
    • Authorization Address: Enter the IP address which will be used by the FortiGate authorization window to access FortiAnalyzer.
    • Authorization Port: Select the port. In this example, the default port 443 is used.
  3. On the FortiGate, go to Log & Report > Log Settings, and enable Send logs to FortiAnalyzer/FortiManager. Enter the IP address of the FortiAnalyzer in the Server field.
  4. After the configuration is saved, the FortiAnalyzer Status window is displayed. Click Authorize.
    The authorization window is displayed.
  5. Enter your FortiAnalyzer login credentials, and click Login.

    After logging in, the authorization window allows administrators to authorize the FortiGate on FortiAnalyzer. At this time the FortiGate is listed as an unauthorized device in the Device Manager on FortiAnalyzer.

    Click on the FortiGate to view its details.

    You can approve or deny the authorization request.
    1. To approve the request, select Approve in the authorization window, and click OK.
      The FortiGate device is authorized on FortiAnalyzer.
    2. To deny the request, select Deny in the authorization window, and click OK.
      The FortiGate device is deleted from the unregistered table on FortiAnalyzer.
  6. If the admin closes the FortiAnalyzer Status window that appears in step four without authorizing a device, a button to authorize the FortiGate on FortiAnalyzer is displayed in two places:
    1. FortiGate Log Settings: In Log &Report > Log Settings, select Authorize to begin the authorization process.
    2. Security Fabric: In Security Fabric > Fabric Connectors, right click on the FortiAnalyzer Logging connector, and select Edit.

      Click Authorize to begin the authorization process.
Previous
Next