Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Administration Guide

    Home FortiAnalyzer 7.0.7 Administration Guide
    7.0.7
    7.6.1
    7.6.0
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.15
    6.4.14
    6.4.13
    6.4.12
    6.4.11
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.2.13
    6.2.12
    6.2.11
    6.2.10
    6.2.9
    6.2.8
    6.2.7
    6.2.6
    6.2.5
    6.2.3
    6.2.2
    6.2.1
    6.2.0
    6.0.12
    6.0.11
    6.0.10
    6.0.9
    6.0.8
    6.0.7
    6.0.6
    6.0.5
    6.0.4
    6.0.3
    6.0.2
    6.0.1
    6.0.0
    5.6.11
    5.6.10
    5.6.10
    5.6.9
    5.6.8
    5.6.7
    5.6.6
    5.6.5
    5.6.4
    5.6.3
    5.6.2
    5.6.1
    5.6.0
    5.4.7
    5.4.6
    5.4.5
    5.4.4
    5.4.3
    5.4.2
    5.4.1
    5.4.0
    5.2.10
    5.2.9
    5.2.7
    5.2.6
    5.2.5
    5.2.4
    5.2.3
    5.2.2
    5.2.1
    5.2.0
    5.0.13
    5.0.11
    5.0.10
    5.0.9
    5.0.8
    5.0.7
    5.0.6
    5.0.5
    5.0.4
    5.0.3
    5.0.2
    4.3.0
    4.2.0
    4.1.0
    4.0.0

    Override administrator attributes from profiles

    Override administrator attributes from profiles

    FortiAnalyzer administrator accounts can be configured to use the RPC Permit (JSON API Access) and Trusted Hosts attributes that are defined by an administrator profile.

    When an administrator has been configured to use the attributes from the profile, the attributes can no longer be changed by editing the administrator account.

    This feature can only be configured from the FortiAnalyzer CLI.

    For more information, see the FortiAnalyzer CLI Reference Guide on the Fortinet Document Library.

    To use RPC Permit and Trusted Host administrator attributes from a profile:
    1. Go to System Settings > Admin > Administrators, and create or edit an admin user.
    2. In Admin Profile dropdown, select an administrator profile, and click OK.
    3. Configure the settings for the rpc-permit and/or trusthost1 attributes in the admin profile.
      Enter the following commands in the FortiAnalyzer CLI:

      config system admin profile

      edit <profile name>

      set rpc-permit {none | read | read-write}

      set trusthost1 <ip & netmask>

      end

    4. Configure the admin user to use the from-profile option for the rpc-permit and/or trusthost1 attributes.
      Enter the following commands in the FortiAnalyzer CLI:

      config system admin user

      edit <admin user>

      set rpc-permit from-profile

      set trusthost1 from-profile

      end

    5. In the FortiAnalyzer GUI, go to System Settings > Admin > Administrators and view the administrator account. The attributes that were configured to use the from-profile setting can no longer be edited and display the settings defined in the administrator profile.
    Previous
    Next

    Override administrator attributes from profiles

    Override administrator attributes from profiles

    FortiAnalyzer administrator accounts can be configured to use the RPC Permit (JSON API Access) and Trusted Hosts attributes that are defined by an administrator profile.

    When an administrator has been configured to use the attributes from the profile, the attributes can no longer be changed by editing the administrator account.

    This feature can only be configured from the FortiAnalyzer CLI.

    For more information, see the FortiAnalyzer CLI Reference Guide on the Fortinet Document Library.

    To use RPC Permit and Trusted Host administrator attributes from a profile:
    1. Go to System Settings > Admin > Administrators, and create or edit an admin user.
    2. In Admin Profile dropdown, select an administrator profile, and click OK.
    3. Configure the settings for the rpc-permit and/or trusthost1 attributes in the admin profile.
      Enter the following commands in the FortiAnalyzer CLI:

      config system admin profile

      edit <profile name>

      set rpc-permit {none | read | read-write}

      set trusthost1 <ip & netmask>

      end

    4. Configure the admin user to use the from-profile option for the rpc-permit and/or trusthost1 attributes.
      Enter the following commands in the FortiAnalyzer CLI:

      config system admin user

      edit <admin user>

      set rpc-permit from-profile

      set trusthost1 from-profile

      end

    5. In the FortiAnalyzer GUI, go to System Settings > Admin > Administrators and view the administrator account. The attributes that were configured to use the from-profile setting can no longer be edited and display the settings defined in the administrator profile.
    Previous
    Next