FortiManager Wizards – FortiManager 5.2

Add device phase

Configure the following settings:

Name Type a unique name for the device. The device name cannot contain spaces or special characters.
Description Type a description of the device (optional).
Disk Log Quota (min. 100MB) Type a value for the disk log quota in MB. The minimum value is 100MB. The total available space in MB is listed to the right of the text field.
When Allocated Disk Space is Full Specify what action to take when the disk space is full:

l Overwrite Oldest Logs l Stop Logging

Device Permissions Specify device permissions: l Logs l DLP Archive l Quarantine l IPS Packet Log
Manage FortiAP Enable or disable central FortiAP management.
Manage Endpoint Enable or disable central endpoint control. Select Specify and select the groups that you want the device to belong to.
Add to Groups Select to add the device to any predefined groups.
Other Device Information Enter other device information (optional), including:

l Company/Organization l Contact l City l Province/State l Country

  1. Select Next.

The wizard will proceed to discover the device, and perform some or all of the following checks:

  • Discovering device l Promoting unregistered device l Checking device status l Retrieving interface information l Updating high availability status l Retrieving configuration l Loading to database
  • Creating initial configuration file l Retrieving IPS signature information l Retrieving support data l Updating group membership
Device created successfully

System templates can be used to centrally manage certain device-level options from a central location. You can assign a system template using the drop-down menu. Alternatively, you can select to configure all settings per-device inside Device Manager. For more information, see Provisioning Templates.

This entry was posted in Administration Guides, FortiManager and tagged , , on by .

About Mike

Michael Pruett, CISSP has a wide range of cyber-security and network engineering expertise. The plethora of vendors that resell hardware but have zero engineering knowledge resulting in the wrong hardware or configuration being deployed is a major pet peeve of Michael's. This site was started in an effort to spread information while providing the option of quality consulting services at a much lower price than Fortinet Professional Services. Owns PacketLlama.Com (Fortinet Hardware Sales) and Office Of The CISO, LLC (Cybersecurity consulting firm).

4 thoughts on “FortiManager Wizards – FortiManager 5.2

  1. Piccolo

    Hi, with add model device, whats is the best practices to add a lot of fortigates ? Load basic config with the fortimanager ip ? Thanks

    Reply
    1. Mike Post author

      My personal preference is to have a base config that configures the WAN IP of the device (if static) and inputs the FortiManager address. Once it phones home to the Manager I just have the Manager push the appropriate configuration. Obviously, this works better in environments that can withstand some small downtime. Though you could stand a deployment like this up in parallel and then just migrate over.

      Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.