Summary of the content on the page No. 1
ADMINISTRAT ION GUIDE
FortiGuard Analysis and
Management Service
Version 1.2.0
www.fortinet.com
Summary of the content on the page No. 2
FortiGuard Analysis and Management Service Administration Guide Version 1.2.0 31 October 2008 13-12000-406-20081031 © Copyright 2008 Fortinet, Inc. All rights reserved. No part of this publication including text, examples, diagrams or illustrations may be reproduced, transmitted, or translated in any form or by any means, electronic, mechanical, manual, optical or otherwise, for any purpose, without prior written permission of Fortinet, Inc. Trademarks Dynamic Threat Prevention System (DTPS),
Summary of the content on the page No. 3
Contents Contents Introduction ........................................................................................ 7 About this document......................................................................................... 7 Document conventions.................................................................................. 7 Typographic conventions........................................................................ 8 Fortinet documentation ........................................
Summary of the content on the page No. 4
Contents Management..................................................................................... 35 Device............................................................................................................... 35 Viewing device information ......................................................................... 35 Adding and editing devices ......................................................................... 37 Authorizing the service on devices ............................
Summary of the content on the page No. 5
Contents Index .................................................................................75 FortiGuard Analysis and Management Service Version 1.2.0 Administration Guide 13-12000-406-20081031 5
Summary of the content on the page No. 6
Contents FortiGuard Analysis and Management Service Version 1.2.0 Administration Guide 6 13-12000-406-20081031
Summary of the content on the page No. 7
Introduction About this document Introduction The FortiGuard Analysis and Management Service is a subscription-based service that provides remote management and logging and reporting capabilities for all FortiGate units. The FortiGuard Analysis and Management Service is available for FortiGate units running FortiOS 3.0 MR6 or higher. The subscription-based service is available from the FortiGuard Analysis and Management Service portal web site, which provides a central location for configu
Summary of the content on the page No. 8
Fortinet documentation Introduction Caution: Warns you about commands or procedures that could have unexpected or ! undesirable results including loss of data or damage to equipment. Typographic conventions Fortinet documentation uses the following typographical conventions: Convention Example Keyboard input In the Gateway Name field, type a name for the remote VPN peer or client (for example, Central_Office_1). Code examples config sys global set ips-open enable end CLI command syntax config
Summary of the content on the page No. 9
Introduction Customer service and technical support Customer service and technical support Fortinet Technical Support provides services designed to make sure that your Fortinet systems install quickly, configure easily, and operate reliably in your network. Please visit the Fortinet Technical Support web site to learn about the technical support services that Fortinet provides. FortiGuard Analysis and Management Service Version 1.2.0 Administration Guide 13-12000-406-20081002 9
Summary of the content on the page No. 10
Customer service and technical support Introduction FortiGuard Analysis and Management Service Version 1.2.0 Administration Guide 10 13-12000-406-20081002
Summary of the content on the page No. 11
Setup About the portal web site Setup This section explains how to: • log in to the portal web site • navigate within the portal web site • properly set up the service • connect a device to the service. This section also explains how to register a purchased contract after a trial contract has expired or if you have purchased the contract from your sales representative without a trial. You must configure both the portal web site and the devices you want associated with the service before you
Summary of the content on the page No. 12
About the portal web site Setup Figure 1: The portal web site When you enter the email address and password for logging in, the Service Account ID appears. You can select which Service Account ID you want to view when logging in to the portal web site if you have multiple Service Account IDs for one contract. Certain contracts allow for multiple Service Account IDs, which provides more flexibility. Contracts can allow both multiple devices and multiple service account IDs. For more informa
Summary of the content on the page No. 13
Setup About the portal web site Figure 2: Portal web site layout, Management view Logout Expand Arrow Tabs Help Sections Refresh Dashboard main The Dashboard main menu provides all features that are related to it, such as customizing and adding pages. You can add widgets to the menu pages as well. Dashboard The Dashboard tab allows you to configure the widgets and their layout. You can also make the Dashboard tab the default page. Customize The Customize link allows you to configure a new
Summary of the content on the page No. 14
Obtaining a trial contract Setup Section Each tab contains sections, which can display a combination of information and links to configure additional settings. You can also expand or hide sections using the Expand Arrow. For example, in the Device tab, shown in Figure 2 on page 13, the Tasks section allows you to view the tasks that are occurring (or have already occurred), as well as to configure an upgrade, run scripts, or show the firmware available for upgrading the device. Help Onlin
Summary of the content on the page No. 15
Setup Obtaining a trial contract Note: If you have previously logged in to the service portal, and want to create another trial contract or enter a purchased contract number, you may need to create a second Service Account ID. Devices can use only one Service Account ID at a time per contract. Instead, add new contracts to your existing Service Account ID. For more information, see “Expanding or renewing service” on page 19. To obtain a trial contract 1 Go to https://fams.fortinet.com/. 2 S
Summary of the content on the page No. 16
Configuring a device to use the service Setup 4 Select Submit. You are automatically logged in to the portal web site. You should immediately log out of the portal web site so that you can configure the devices to use FortiGuard Analysis and Management Service. You will also receive an email from fams_admin@fortinet.com verifying your trial contract. If you want to add a purchased contract, you do not have to create a second service account. Instead, you can add contracts to your existing
Summary of the content on the page No. 17
Setup Configuring a device to use the service 2 Select the Expand Arrow beside Analysis & Management Service Options to reveal the available options. 3 Enter the service account ID in the Account ID field. The service account ID entered here will be used to identify that the device is associated with that service account. 4 Select Apply. In the FortiGuard Subscription Services area of the FortiGuard page, you should see a green checkmark in the Analysis & Management Service row, as in Figu
Summary of the content on the page No. 18
Configuring a device to use the service Setup To configure remote logging to the service 1 In the FortiGate web-based manager, go to Log&Report > Log Config > Log Setting. Figure 5: FortiGuard logging options in Log Setting 2 Select the Expand Arrow beside Remote Logging to reveal the available options. 3 Select FortiGuard Analysis Service. If this check box is grayed out, authorize the device from the portal web site and configure the Service Account ID before performing this step. For more
Summary of the content on the page No. 19
Setup Expanding or renewing service Figure 6: Central Management options 2 Select the check box beside Enable Central Management. 3 From Type, select FortiGuard Management Service. 4 Select Apply. 5 Select any of the following options that you want enabled: Allow automatic Automatically upload a new configuration revision to the service when an administrator logs out or the session times out. backup of Most configuration changes cause an automatic backup. configuration on Exceptions include
Summary of the content on the page No. 20
Expanding or renewing service Setup Renewing contracts If you want to extend the service period, you can add a renewal contract to the previous contract. Note: Contract renewal requires an existing contract. If you have not yet added your first contract, add the first contract, then add the renewal contract. For more information, see “Obtaining a trial contract” on page 14 and “Adding purchased contracts” on page 21. To add a renewal contract 1 Go to the Fortinet Technical Support web site