Fortinet Document Library

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:


Table of Contents

EMS QuickStart Guide

Creating a Telemetry server list

You can create a Telemetry server list that contains IP addresses for one or multiple EMS servers and FortiGates. FortiClient searches for IP addresses in its subnet in the Telemetry server list and connects to the EMS and FortiGate in the list that is in the same subnet as the host system.

If FortiClient cannot find any EMS or FortiGates in its subnet, it attempts to connect to the first reachable EMS and FortiGate in the list, starting from the top. FortiClient maintains the list order as configured in the Telemetry server list.

FortiClient 6.4.0 and later versions cannot directly connect Telemetry to FortiOS. FortiClient 6.4.0 only connects Telemetry to EMS, which then sends FortiClient data to FortiOS. Only endpoints with FortiClient versions older than 6.4.0 installed can connect Telemetry directly to FortiOS.

To create a Telemetry server list:
  1. Go to Telemetry Server Lists > Manage Telemetry Server Lists.
  2. Click the Add button.
  3. Configure the following:

    Name

    Enter the list name.

    Comment

    Enter additional comments (optional).

    Connect to local subnets only

    Only allow connection to local subnets.

    Use connection key

    Enable the connection key endpoints can use to connect to FortiGates.

     

    New connection key

    Enter the connection key.

     

    Confirm new connection key

    Reenter the connection key to confirm.

    Managed by EMS

    Select an option from the dropdown list. Users can configure this IP address in System Settings > Server.

    Notify FortiGate

    Enter the FortiGates IP address(es) or hostname(s). You can also use an FQDN.

    Press the Enter key to add additional entries.

    This option is only available if you enable Show FortiGate Server List in System Settings > Server.

  4. Click Save.

If you later delete a Telemetry server list, an endpoint that had that Telemetry server list assigned disconnects from the FortiGate configured in that Telemetry server list, but maintains its connection to EMS.

If you disable Show FortiGate Server List in System Settings > Server, even if you do not delete the Telemetry server list, an endpoint that had that Telemetry server list assigned disconnects from the FortiGate configured in that Telemetry server list.

Creating a Telemetry server list

You can create a Telemetry server list that contains IP addresses for one or multiple EMS servers and FortiGates. FortiClient searches for IP addresses in its subnet in the Telemetry server list and connects to the EMS and FortiGate in the list that is in the same subnet as the host system.

If FortiClient cannot find any EMS or FortiGates in its subnet, it attempts to connect to the first reachable EMS and FortiGate in the list, starting from the top. FortiClient maintains the list order as configured in the Telemetry server list.

FortiClient 6.4.0 and later versions cannot directly connect Telemetry to FortiOS. FortiClient 6.4.0 only connects Telemetry to EMS, which then sends FortiClient data to FortiOS. Only endpoints with FortiClient versions older than 6.4.0 installed can connect Telemetry directly to FortiOS.

To create a Telemetry server list:
  1. Go to Telemetry Server Lists > Manage Telemetry Server Lists.
  2. Click the Add button.
  3. Configure the following:

    Name

    Enter the list name.

    Comment

    Enter additional comments (optional).

    Connect to local subnets only

    Only allow connection to local subnets.

    Use connection key

    Enable the connection key endpoints can use to connect to FortiGates.

     

    New connection key

    Enter the connection key.

     

    Confirm new connection key

    Reenter the connection key to confirm.

    Managed by EMS

    Select an option from the dropdown list. Users can configure this IP address in System Settings > Server.

    Notify FortiGate

    Enter the FortiGates IP address(es) or hostname(s). You can also use an FQDN.

    Press the Enter key to add additional entries.

    This option is only available if you enable Show FortiGate Server List in System Settings > Server.

  4. Click Save.

If you later delete a Telemetry server list, an endpoint that had that Telemetry server list assigned disconnects from the FortiGate configured in that Telemetry server list, but maintains its connection to EMS.

If you disable Show FortiGate Server List in System Settings > Server, even if you do not delete the Telemetry server list, an endpoint that had that Telemetry server list assigned disconnects from the FortiGate configured in that Telemetry server list.