Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • New Features

    Home FortiAnalyzer 7.0.0 New Features
    7.0.0
    7.6.0
    7.4.0
    7.2.0
    7.0.0
    6.4.0
    6.2.3
    6.2.2
    6.2.1
    6.2.0

    Model device support for central logging

    Model device support for central logging

    FortiAnalyzer includes the option to add a device as a model device in Device Manager and auto-link the device using a pre-shared key when the real device connects to FortiAnalyzer.

    To add devices using a pre-shared key:
    1. On FortiAnalyzer, go to the Device Manager, and click Add Device.
    2. Under Link Device By select Pre-shared Key, configure the settings for your device, and click Next.
      1. Name: Enter a name for the device, for example, ModelDevice_FG40F.
      2. Pre-shared Key: Enter a pre-shared key, for example: qa1234.
      3. Device Model: Select the device model, for example: FGT40F.

      The device is added successfully but is not yet authorized.

    3. On the FortiGate, go to Log Settings to configure the FortiAnalyzer. At this time, the connection status is unauthorized.
    4. In the FortiGate CLI, configure the pre-shared key to match the one configured on the FortiAnalyzer, for example qa1234.

      config log fortianalyzer setting

      set preshared-key <your pre-shared key>

    5. On FortiAnalyzer, go to the Device Manager and refresh the table. The FortiGate device is recognized and is automatically authorized as a registered device.
    6. On FortiGate, check Log Settings to confirm the connection status is Connected.
    To add multiple devices using the same FortiGate platform:
    1. On FortiAnalyzer, go to the Device Manager and configure multiple model devices using the same FortiGate platform. Each configured device must have a unique pre-shared key. In this example, five devices are configured.

    2. When a corresponding FortiGate device is configured to send logs to the FortiAnalyzer, and it is configured with a pre-shared key matching one of the five configured in FortiAnalyzer, it is automatically authorized as a registered device on FortiAnalyzer.
    Previous
    Next

    Model device support for central logging

    Model device support for central logging

    FortiAnalyzer includes the option to add a device as a model device in Device Manager and auto-link the device using a pre-shared key when the real device connects to FortiAnalyzer.

    To add devices using a pre-shared key:
    1. On FortiAnalyzer, go to the Device Manager, and click Add Device.
    2. Under Link Device By select Pre-shared Key, configure the settings for your device, and click Next.
      1. Name: Enter a name for the device, for example, ModelDevice_FG40F.
      2. Pre-shared Key: Enter a pre-shared key, for example: qa1234.
      3. Device Model: Select the device model, for example: FGT40F.

      The device is added successfully but is not yet authorized.

    3. On the FortiGate, go to Log Settings to configure the FortiAnalyzer. At this time, the connection status is unauthorized.
    4. In the FortiGate CLI, configure the pre-shared key to match the one configured on the FortiAnalyzer, for example qa1234.

      config log fortianalyzer setting

      set preshared-key <your pre-shared key>

    5. On FortiAnalyzer, go to the Device Manager and refresh the table. The FortiGate device is recognized and is automatically authorized as a registered device.
    6. On FortiGate, check Log Settings to confirm the connection status is Connected.
    To add multiple devices using the same FortiGate platform:
    1. On FortiAnalyzer, go to the Device Manager and configure multiple model devices using the same FortiGate platform. Each configured device must have a unique pre-shared key. In this example, five devices are configured.

    2. When a corresponding FortiGate device is configured to send logs to the FortiAnalyzer, and it is configured with a pre-shared key matching one of the five configured in FortiAnalyzer, it is automatically authorized as a registered device on FortiAnalyzer.
    Previous
    Next