Custom FortiClient Installations

Leave a reply

Prepare configuration files

You can select the following types of files in the FortiClient Configurator tool:

l Configuration file l Gateway IP list

This section describes how to retrieve the files and edit them to prepare the files for use with the FortiClient Configurator tool.

Retrieve FortiClient configuration files

You can retrieve a configuration file from FortiClient console. The configuration file contains the settings for FortiClient. After you retrieve the configuration file, you can use an XML editor to make changes to the configuration file. Then you can select the FortiClient configuration file in the FortiClient Configurator tool.

To retrieve FortiClient configuration files:

  1. In FortiClient console, go to File > Settings.
  2. In the System area, click Backup.
  3. Select a destination, and click OK.
  4. Use an XML editor to edit the settings in the configuration file.

Prepare configuration files

For more information on FortiClient XML configuration, see the FortiClient XML Reference in the Fortinet Document Library, http://docs.fortinet.com.

Configure Telemetry Gateway IP Lists

You can create one or more Telemetry Gateway IP Lists, and then select the list in the FortiClient Configurator tool.

When FortiClient endpoints will connect Telemetry to FortiGate, the Telemetry Gateway IP List contains IP addresses for FortiGate devices.

When FortiClient endpoints will connect Telemetry to FortiGate and send notifications to FortiClient EMS, the Telemetry Gateway IP List contains IP addresses for FortiGate devices and a server notification address for FortiClient EMS.

You use an XML editor to create Telemetry Gateway IP Lists that you can select in the FortiClient Configurator tool.

To configure Telemetry Gateway IP Lists:

  1. In FortiClient console, export the configuration. See Retrieve FortiClient configuration files on page 111.
  2. Open the configuration file in an XML editor.
  3. Remove all elements, except the elements needed to configure the Telemetry Gateway IP List. See Example XML of Telemetry Gateway IP List on page 112.
  4. Add IP addresses to the configuration file by using an XML editor.

When using only FortiGate for endpoint control, use the <fortigate> element to identify one or more IP addresses for FortiGate devices.

When using FortiGate integrated with EMS, use the <fortigate> element to identify one or more IP addresses for FortiGate devices, and use the <notification_server> element to identify the IP address for EMS.

  1. Save the configuration file.
Pages: 1 2 3 4 5 6
This entry was posted in FortiClient and tagged , , on by .

About Mike

Michael Pruett, CISSP has a wide range of cyber-security and network engineering expertise. The plethora of vendors that resell hardware but have zero engineering knowledge resulting in the wrong hardware or configuration being deployed is a major pet peeve of Michael's. This site was started in an effort to spread information while providing the option of quality consulting services at a much lower price than Fortinet Professional Services. Owns PacketLlama.Com (Fortinet Hardware Sales) and Office Of The CISO, LLC (Cybersecurity consulting firm).

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.