Fortinet black logo

Introduction

Copy Link
Copy Doc ID be528d81-a65c-11e8-8784-00505692583a:96928
Download PDF

Introduction

This document clarifies compliance when using FortiClient in the following configurations:

The document also describes the following scenario, which does not support compliance:

The following clarifies the terminology used in this document.

Term

Definition

Managed mode

FortiClient used with FortiGate or EMS.

Integrated mode

FortiClient used with FortiGate and EMS. In this scenario, FortiClient connects Telemetry to FortiOS and EMS.

Fabric Telemetry connection

Connection between FortiClient and FortiOS when FortiClient is used with FortiGate.

Management Telemetry connection

Connection between FortiClient and EMS when FortiClient is used with EMS.

Endpoint

Computer or device where FortiClient is installed. An endpoint has Internet access and is running a supported operating system (OS).

Connect FortiClient Telemetry

Establish connection between FortiClient and FortiGate or FortiClient and EMS. This is also referred to as registering FortiClient to FortiGate/EMS.

Profile

XML configuration file provided from FortiGate or EMS to the endpoint when in managed or integrated mode.

In FortiOS, administrators configure a FortiClient Profile. This profile defines compliance rules for endpoint access to the network through FortiGate. It also defines how FortiGate handles endpoints that fail to comply with compliance rules.

In EMS, administrators configure an endpoint profile. This profile defines the configuration for FortiClient software on endpoints.

Unless referring specifically to a profile created using FortiOS or EMS, this guide uses the term profile when referring to either a FortiClient Profile or an endpoint profile received by FortiClient.

Introduction

This document clarifies compliance when using FortiClient in the following configurations:

The document also describes the following scenario, which does not support compliance:

The following clarifies the terminology used in this document.

Term

Definition

Managed mode

FortiClient used with FortiGate or EMS.

Integrated mode

FortiClient used with FortiGate and EMS. In this scenario, FortiClient connects Telemetry to FortiOS and EMS.

Fabric Telemetry connection

Connection between FortiClient and FortiOS when FortiClient is used with FortiGate.

Management Telemetry connection

Connection between FortiClient and EMS when FortiClient is used with EMS.

Endpoint

Computer or device where FortiClient is installed. An endpoint has Internet access and is running a supported operating system (OS).

Connect FortiClient Telemetry

Establish connection between FortiClient and FortiGate or FortiClient and EMS. This is also referred to as registering FortiClient to FortiGate/EMS.

Profile

XML configuration file provided from FortiGate or EMS to the endpoint when in managed or integrated mode.

In FortiOS, administrators configure a FortiClient Profile. This profile defines compliance rules for endpoint access to the network through FortiGate. It also defines how FortiGate handles endpoints that fail to comply with compliance rules.

In EMS, administrators configure an endpoint profile. This profile defines the configuration for FortiClient software on endpoints.

Unless referring specifically to a profile created using FortiOS or EMS, this guide uses the term profile when referring to either a FortiClient Profile or an endpoint profile received by FortiClient.