Fortinet black logo

Administration Guide

Home FortiNDR 7.1.0 Administration Guide
7.1.0
7.4.3
7.4.2
7.4.1
7.4.0
7.2.3
7.2.2
7.2.1
7.2.0
7.1.0
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0

FortiSwitch quarantine setup example

FortiSwitch quarantine setup example

FortiNDR supports quarantining devices that are connected to a FortiSwitch which is managed by FortiGate. FortiSwitch is connected to a FortiGate and is configured in FortiLink mode. FortiNDR will utilize FortiGate’s incoming webhook to provide the device's MAC address for quarantine/undo quarantine.

For information about configuring FortiLink, see Configuring FortiLink.

To setup FortiSwitch quarantine on FortiNDR:
  1. Following the steps for creating a webhook on FortiGate in FortiGate quarantine webhook setup example. Note that the CLI script for quarantine and undo quarantine should be updated.

    Note

    The CLI script for quarantine and undo quarantine should be updated.

  2. Register webhooks on FortiNDR .
    Note

    The device settings such as IP and Port are the IP and port of the managing FortiGate device.

  3. Click the Test button to test the current configuration.

  4. Click OK.

Previous
Next

FortiSwitch quarantine setup example

FortiNDR supports quarantining devices that are connected to a FortiSwitch which is managed by FortiGate. FortiSwitch is connected to a FortiGate and is configured in FortiLink mode. FortiNDR will utilize FortiGate’s incoming webhook to provide the device's MAC address for quarantine/undo quarantine.

For information about configuring FortiLink, see Configuring FortiLink.

To setup FortiSwitch quarantine on FortiNDR:
  1. Following the steps for creating a webhook on FortiGate in FortiGate quarantine webhook setup example. Note that the CLI script for quarantine and undo quarantine should be updated.

    Note

    The CLI script for quarantine and undo quarantine should be updated.

  2. Register webhooks on FortiNDR .
    Note

    The device settings such as IP and Port are the IP and port of the managing FortiGate device.

  3. Click the Test button to test the current configuration.

  4. Click OK.

Previous
Next