Fortinet black logo

Use Cases

Home FortiClient 6.0.3 Use Cases

Use Case: Enforcing Corporate Security Policies

6.0.3
6.0.3
Copy Link
Copy Doc ID 071aa83e-d7c4-11e8-8784-00505692583a:749051
Download PDF

Use Case: Enforcing Corporate Security Policies

You can use FortiClient EMS in integrated mode with FortiGate. In this scenario, EMS provides endpoint provisioning, while the FortiGate provides compliance rules to the endpoint. You can use the FortiGate to enforce corporate security policies by:

  • Defining compliance rules for endpoint access to the network through FortiGate
  • Defining the non-compliance action for FortiGate--that is, how FortiGate handles endpoints that fail to comply with compliance rules

This use case describes how to configure FortiClient compliance rules on FortiOS and shows an example of how non-compliant settings affect an endpoint. Consider the following topics:

  1. Create set of compliance rules in FortiOS to send to FortiClient endpoints. See Configuring the FortiClient Compliance Profile in FortiOS.
  2. View received compliance rules in FortiClient and fix non-compliant settings. See Fixing non-compliant settings.
  3. View options available for the compliance rules in FortiOS. See Additional compliance options.
Note

This use case assumes that FortiClient Telemetry is connected to both EMS and the FortiGate. For details on configuring the FortiClient Telemetry connections, see Use Case: FortiClient Software Management.
Previous
Next

Use Case: Enforcing Corporate Security Policies

You can use FortiClient EMS in integrated mode with FortiGate. In this scenario, EMS provides endpoint provisioning, while the FortiGate provides compliance rules to the endpoint. You can use the FortiGate to enforce corporate security policies by:

  • Defining compliance rules for endpoint access to the network through FortiGate
  • Defining the non-compliance action for FortiGate--that is, how FortiGate handles endpoints that fail to comply with compliance rules

This use case describes how to configure FortiClient compliance rules on FortiOS and shows an example of how non-compliant settings affect an endpoint. Consider the following topics:

  1. Create set of compliance rules in FortiOS to send to FortiClient endpoints. See Configuring the FortiClient Compliance Profile in FortiOS.
  2. View received compliance rules in FortiClient and fix non-compliant settings. See Fixing non-compliant settings.
  3. View options available for the compliance rules in FortiOS. See Additional compliance options.
Note

This use case assumes that FortiClient Telemetry is connected to both EMS and the FortiGate. For details on configuring the FortiClient Telemetry connections, see Use Case: FortiClient Software Management.
Previous
Next