Fortinet Document Library

Version:

Version:


Table of Contents

New Features

Download PDF
Copy Link

Model device support for central logging

FortiAnalyzer includes the option to add a device as a model device in Device Manager and auto-link the device using a pre-shared key when the real device connects to FortiAnalyzer.

To add devices using a pre-shared key:
  1. On FortiAnalyzer, go to the Device Manager, and click Add Device.
  2. Under Link Device By select Pre-shared Key, configure the settings for your device, and click Next.
    1. Name: Enter a name for the device, for example, ModelDevice_FG40F.
    2. Pre-shared Key: Enter a pre-shared key, for example: qa1234.
    3. Device Model: Select the device model, for example: FGT40F.

    The device is added successfully but is not yet authorized.

  3. On the FortiGate, go to Log Settings to configure the FortiAnalyzer. At this time, the connection status is unauthorized.
  4. In the FortiGate CLI, configure the pre-shared key to match the one configured on the FortiAnalyzer, for example qa1234.

    config log fortianalyzer setting

    set preshared-key <your pre-shared key>

  5. On FortiAnalyzer, go to the Device Manager and refresh the table. The FortiGate device is recognized and is automatically authorized as a registered device.
  6. On FortiGate, check Log Settings to confirm the connection status is Connected.
To add multiple devices using the same FortiGate platform:
  1. On FortiAnalyzer, go to the Device Manager and configure multiple model devices using the same FortiGate platform. Each configured device must have a unique pre-shared key. In this example, five devices are configured.

  2. When a corresponding FortiGate device is configured to send logs to the FortiAnalyzer, and it is configured with a pre-shared key matching one of the five configured in FortiAnalyzer, it is automatically authorized as a registered device on FortiAnalyzer.

Model device support for central logging

FortiAnalyzer includes the option to add a device as a model device in Device Manager and auto-link the device using a pre-shared key when the real device connects to FortiAnalyzer.

To add devices using a pre-shared key:
  1. On FortiAnalyzer, go to the Device Manager, and click Add Device.
  2. Under Link Device By select Pre-shared Key, configure the settings for your device, and click Next.
    1. Name: Enter a name for the device, for example, ModelDevice_FG40F.
    2. Pre-shared Key: Enter a pre-shared key, for example: qa1234.
    3. Device Model: Select the device model, for example: FGT40F.

    The device is added successfully but is not yet authorized.

  3. On the FortiGate, go to Log Settings to configure the FortiAnalyzer. At this time, the connection status is unauthorized.
  4. In the FortiGate CLI, configure the pre-shared key to match the one configured on the FortiAnalyzer, for example qa1234.

    config log fortianalyzer setting

    set preshared-key <your pre-shared key>

  5. On FortiAnalyzer, go to the Device Manager and refresh the table. The FortiGate device is recognized and is automatically authorized as a registered device.
  6. On FortiGate, check Log Settings to confirm the connection status is Connected.
To add multiple devices using the same FortiGate platform:
  1. On FortiAnalyzer, go to the Device Manager and configure multiple model devices using the same FortiGate platform. Each configured device must have a unique pre-shared key. In this example, five devices are configured.

  2. When a corresponding FortiGate device is configured to send logs to the FortiAnalyzer, and it is configured with a pre-shared key matching one of the five configured in FortiAnalyzer, it is automatically authorized as a registered device on FortiAnalyzer.