What is FortiGate? #
Fortinet FortiGate next generation firewalls (NGFWs) provide industry-leading threat protection and decryption at scale with a custom ASIC architecture. They also deliver Secure Networking with integrated features like SD-WAN, switching and wireless, and 5G.
Why Should You Use the FortiGate Connector? #
The FortiGate connector provides visibility into the traffic allowed on your network. You can use this visibility to:
-
ensure network access is managed per your security policies
-
ensure all endpoints are appropriately segmented
How Does This Connector Work? #
Lucidum executes read-only requests to the FortiOS REST API and ingests only meta-data about the FortiGate device. Lucidum does not retrieve any data stored on your assets.
Configuring the Connector in Lucidum #
| Field | Description | Example |
|---|---|---|
| Host | The hostname of the Fortigate firewall. | 10.2.290.29 |
| Port | The port on the ortigate firewall. Default port is 389 | 389 |
| Username | User name for a Fortigate account with read access. | justynmutts |
| Password | The password for a Fortigate account with read access. | ************ |
| Verify SSL. | For future use. | N/A |
Source Documentation #
Creating Credentials #
https://community.fortinet.com/t5/FortiGate/Technical-Tip-About-REST-API/ta-p/195425
https://docs.fortinet.com/document/fortigate/6.0.0/cli-reference/474886/api-user
Required Permissions #
| Object | Permissions |
|---|---|
| System Configuration | Read |
| User and Device | Read |
| Network Configuration | Read |
| Log & Report | Read |
| Firewall Configuration | Read |
| VPN Configuration | Read |
| Security Profile Configuration | Read |
| JSON API | Read |
API Documentation #
API V5.3
