Table of Contents | ||||
---|---|---|---|---|
|
Info |
---|
|
Navigate to Integrations
In the CyberCNS portal, navigate to Global Settings(⚙) > Integrations and choose FortiGate from the integrations listed.
Next, you will add credentials for your FortiGate firewall.
...
Enter Credentials
Using API:
Info |
---|
Please create a new User for CyberCNS before adding the credentials to FortiGate Firewall. |
In FortiGate navigate to the Administrators, in Administrators click on the Create New dropdown, and select REST API Admin.
...
You have to set Set a username for the API administrator account and select its profile. You can use Use an existing profile and create a new one and limit permissions to what the plugin will be used for.
...
If case you decide Once decided to create a new profile, select add from the Administrator Profile dropdown.
...
If you decide Once decided to create a new profile, assign it a name and give it appropriate permissions. Optionally, you can provide a description of what this profile is allowed to do and where it's used. The plugin actions require a minimum of Firewall Read/Write permissions.
...
Click OK to create the new profile.
Need to add the IP range of the agent machine in trusted hosts.
...
Next, click OK to create the a new user. The New API key will be generated.
...
5. Enter Port Number: Enter the Port Number for the credentials to be added (ssh port for ssh scan and https port for API scan[integrating with API Key]).
...
6. Enter Username: Enter the username used to log in to the Fortigate Firewall. It is recommended that you to define a special username to be used exclusively for these scans so that they it can be identified in the firewall’s logs.
Info |
---|
7. Enter Password: Enter the password only if scanning via ssh(ssh port should be integrated above).
Info |
---|
Do not enter the password if you are integrating with the API key. |
...
Completed firewall scans are listed with timestamps as shown below. To view the results of a scan, click the scan in the list.
...
The scan results can be downloaded as a report in the Microsoft Word .docx format by clicking Download Report.
...
Using SSH:
Info |
---|
SSH integration is supported only for legacy devices. |
Please add below fields while integrating with Firewall.
1. Port Number: Enter the Port Number for the credentials to be added (ssh port for ssh scan)
2. Password: Enter the password only if scanning via ssh(ssh port should be integrated above).
...
Please note for SSH integration API key value is not required.
...
This completes the documentation of the Fortigate Firewall Scan.