Fortinet white logo
Fortinet white logo

Administration Guide

Checking FortiClient authorization for FortiSandbox scanning

Checking FortiClient authorization for FortiSandbox scanning

note icon

This feature requires FortiSandbox 2.5.0 or later. If you are using EMS, EMS 1.2.2 or later is required.

Depending on the FortiSandbox configuration, FortiSandbox may only scan submitted files when FortiClient is authorized. The Malware Protection tab in FortiClient displays the authorization status.

The following table summarizes how FortiSandbox receives the authorization status for FortiClient:

Mode

FortiClient Telemetry connection

FortiClient authorization

Standalone mode

N/A

The FortiSandbox administrator can choose to disable authorization of FortiClient. When authorization is disabled, all authorization requests are accepted. When authorization is enabled, the FortiSandbox administrator must manually authorize each FortiClient using the FortiSandbox GUI.

Managed mode

EMS only

EMS provides authorization to FortiSandbox for FortiClient.

The FortiSandbox administrator must authorize the EMS server managing FortiClient.

EMS and FortiGate

EMS provides authorization to FortiSandbox for FortiClient.

The FortiSandbox administrator can authorize EMS or FortiGate.

FortiGate only

FortiGate provides authorization to FortiSandbox for FortiClient.

The FortiSandbox administrator must authorize FortiGate.

To check Sandbox authorization status:
  1. On the Malware Protection tab, click the settings icon.
  2. If the Administrative privileges are required to change settings. Press Elevate to obtain these privileges. message displays, click Elevate.

    The settings page displays.

  3. Under Sandbox Detection, click the Test button.

    A dialog box communicating the authorization status displays.

  4. Click OK to close the confirmation dialog box.

Checking FortiClient authorization for FortiSandbox scanning

Checking FortiClient authorization for FortiSandbox scanning

note icon

This feature requires FortiSandbox 2.5.0 or later. If you are using EMS, EMS 1.2.2 or later is required.

Depending on the FortiSandbox configuration, FortiSandbox may only scan submitted files when FortiClient is authorized. The Malware Protection tab in FortiClient displays the authorization status.

The following table summarizes how FortiSandbox receives the authorization status for FortiClient:

Mode

FortiClient Telemetry connection

FortiClient authorization

Standalone mode

N/A

The FortiSandbox administrator can choose to disable authorization of FortiClient. When authorization is disabled, all authorization requests are accepted. When authorization is enabled, the FortiSandbox administrator must manually authorize each FortiClient using the FortiSandbox GUI.

Managed mode

EMS only

EMS provides authorization to FortiSandbox for FortiClient.

The FortiSandbox administrator must authorize the EMS server managing FortiClient.

EMS and FortiGate

EMS provides authorization to FortiSandbox for FortiClient.

The FortiSandbox administrator can authorize EMS or FortiGate.

FortiGate only

FortiGate provides authorization to FortiSandbox for FortiClient.

The FortiSandbox administrator must authorize FortiGate.

To check Sandbox authorization status:
  1. On the Malware Protection tab, click the settings icon.
  2. If the Administrative privileges are required to change settings. Press Elevate to obtain these privileges. message displays, click Elevate.

    The settings page displays.

  3. Under Sandbox Detection, click the Test button.

    A dialog box communicating the authorization status displays.

  4. Click OK to close the confirmation dialog box.