Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • New Features

    Home FortiManager 7.0.0 New Features
    7.0.0
    7.6.0
    7.4.0
    7.2.0
    7.0.0
    6.4.0
    6.2.7
    6.2.3
    6.2.2
    6.2.1
    6.2.0

    FortiSigConverter MEA supports ADOMs 7.0.2

    FortiSigConverter MEA supports ADOMs 7.0.2

    When enabled on FortiManager 7.0.2 and later, FortiSigConverter supports multiple ADOMs. Each ADOM can have a dedicated FortiSigConverter application.

    Note

    When enabled on FortiManager 6.4.3 to 7.0.1, FortiSigConverter supports only the root ADOM.

    This topic contains the following sections:

    Enabling FortiSigConverter for all ADOMs

    You can enable FortiSigConverter from the root ADOM or any eligible ADOM, if ADOMs are enabled. After you enable FortiSigConverter, the application is visible on all other eligible ADOMs.

    To enable FortiSigConverter MEA:
    1. On FortiManager, ensure you are logged in by using an administrator account that is assigned a Super_User profile.
    2. Go to Management Extensions, and click FortiSigConverter.

      A confirmation dialog box is displayed.

    3. In the confirmation dialog box, click OK.

      As long as FortiManager has access to the Internet, FortiSigConverter MEA is downloaded from the Fortinet registry (registry.fortinet.com). A progress bar displays under the FortiSigConverter tile.

      After FortiSigConverter is downloaded, the FortiSigConverter tile is available.

    4. Click FortiSigConverter.

      FortiSigConverter opens.

    Importing Snort signature rules per ADOM

    After FortiSigConverter is enabled, you can import Snort signature files to convert the signature rules to a Fortinet supported format.

    When ADOMs are enabled, you must go to the correct ADOM before you import Snort signature files. If you want to use the same Snort signature files in two or more ADOMs, you must import the Snort signature rules to the FortiSigConverter MEA in each ADOM.

    To import Snort signature files to FortiSigConverter:
    1. If ADOMs are enabled, ensure you are in the correct ADOM.
    2. Go to Management Extensions, and click FortiSigConverter.

      FortiSigConverter opens.

    3. Go to IPS Custom Signature, and click Import SNORT Signature.

      The Import SNORT Signature dialog box is displayed.

    4. Click Browse to locate the Snort signature file, and then click Open.

      The selected Snort file is displayed.

    5. Click OK to start the import process.

      A progress bar is displayed.

    6. When the progress bar reaches 100%, click OK to complete the import process.

      The Snort signature file is imported, and all its signature rules are converted to a Fortinet supported format.

    Pushing signature rules to FortiManager per ADOM

    After you import Snort signature files to FortiSigConverter, you can push the converted signature rules to FortiManager for use in policies.

    When ADOMs are enabled, you can only push the converted signature rules to the Policy & Objects module in the same ADOM.

    To push converted signature rules to FortiManager:
    1. If ADOMs are enabled, ensure you are in the correct ADOM.
    2. Go to Management Extensions, and click FortiSigConverter.

      FortiSigConverter opens.

    3. Go to IPS Custom Signature, and click the imported Snort signature file.

      The list of converted signature rules are displayed.

    4. Select one or more signature rules, and click Push to FortiManager.

      A confirmation dialog box is displayed.

    5. Click OK to start the push process.

      A progress bar is displayed.

    6. When the progress bar reaches 100%, click OK to complete the import process.
    7. In FortiManager, go to Policy & Objects.
    8. In the tree menu, expand Object Configurations > IPS Signatures.

      The pushed signature rules are displayed under Custom IPS Signature in the content pane.

    Previous
    Next

    FortiSigConverter MEA supports ADOMs 7.0.2

    FortiSigConverter MEA supports ADOMs 7.0.2

    When enabled on FortiManager 7.0.2 and later, FortiSigConverter supports multiple ADOMs. Each ADOM can have a dedicated FortiSigConverter application.

    Note

    When enabled on FortiManager 6.4.3 to 7.0.1, FortiSigConverter supports only the root ADOM.

    This topic contains the following sections:

    Enabling FortiSigConverter for all ADOMs

    You can enable FortiSigConverter from the root ADOM or any eligible ADOM, if ADOMs are enabled. After you enable FortiSigConverter, the application is visible on all other eligible ADOMs.

    To enable FortiSigConverter MEA:
    1. On FortiManager, ensure you are logged in by using an administrator account that is assigned a Super_User profile.
    2. Go to Management Extensions, and click FortiSigConverter.

      A confirmation dialog box is displayed.

    3. In the confirmation dialog box, click OK.

      As long as FortiManager has access to the Internet, FortiSigConverter MEA is downloaded from the Fortinet registry (registry.fortinet.com). A progress bar displays under the FortiSigConverter tile.

      After FortiSigConverter is downloaded, the FortiSigConverter tile is available.

    4. Click FortiSigConverter.

      FortiSigConverter opens.

    Importing Snort signature rules per ADOM

    After FortiSigConverter is enabled, you can import Snort signature files to convert the signature rules to a Fortinet supported format.

    When ADOMs are enabled, you must go to the correct ADOM before you import Snort signature files. If you want to use the same Snort signature files in two or more ADOMs, you must import the Snort signature rules to the FortiSigConverter MEA in each ADOM.

    To import Snort signature files to FortiSigConverter:
    1. If ADOMs are enabled, ensure you are in the correct ADOM.
    2. Go to Management Extensions, and click FortiSigConverter.

      FortiSigConverter opens.

    3. Go to IPS Custom Signature, and click Import SNORT Signature.

      The Import SNORT Signature dialog box is displayed.

    4. Click Browse to locate the Snort signature file, and then click Open.

      The selected Snort file is displayed.

    5. Click OK to start the import process.

      A progress bar is displayed.

    6. When the progress bar reaches 100%, click OK to complete the import process.

      The Snort signature file is imported, and all its signature rules are converted to a Fortinet supported format.

    Pushing signature rules to FortiManager per ADOM

    After you import Snort signature files to FortiSigConverter, you can push the converted signature rules to FortiManager for use in policies.

    When ADOMs are enabled, you can only push the converted signature rules to the Policy & Objects module in the same ADOM.

    To push converted signature rules to FortiManager:
    1. If ADOMs are enabled, ensure you are in the correct ADOM.
    2. Go to Management Extensions, and click FortiSigConverter.

      FortiSigConverter opens.

    3. Go to IPS Custom Signature, and click the imported Snort signature file.

      The list of converted signature rules are displayed.

    4. Select one or more signature rules, and click Push to FortiManager.

      A confirmation dialog box is displayed.

    5. Click OK to start the push process.

      A progress bar is displayed.

    6. When the progress bar reaches 100%, click OK to complete the import process.
    7. In FortiManager, go to Policy & Objects.
    8. In the tree menu, expand Object Configurations > IPS Signatures.

      The pushed signature rules are displayed under Custom IPS Signature in the content pane.

    Previous
    Next