Fortinet black logo

Online Help

Home FortiCNP 22.3.a Online Help

Add Amazon SNS Notification Target

22.3.a
22.4.a
22.3.b
22.3.a
Copy Link
Copy Doc ID cf00dcb1-0886-11ed-bb32-fa163e15d75b:266757

Add Amazon SNS Notification Target

Amazon Simple Notification Service (Amazon SNS) is an Amazon message service that manages push messages and subscribed endpoints, it also let you create and deliver messages for distributed services. You may use Amazon SNS to create subscription endpoints for FortiCNP notifications.

Prerequisite

Before setup Amazon SNS with FortiCNP notification, the AWS account on FortiCNP must have Notification Permission. Notification permission can be granted to FortiCNP during AWS account onboarding.

If the Notification Permission was not selected during the AWS account onboarding process, you can update the account installation to include the Notification Permission. Please see Update AWS Account Automatically or Update AWS Organization.

Create New SNS Topic on AWS

After you verify that Notification Permission is added to AWS account, you can create a new SNS topic on AWS.

Follow the AWS tutorial guide to create a new Amazon SNS topic:

https://docs.aws.amazon.com/sns/latest/dg/CreateTopic.html

Note: FortiCNP only supports Standard type, not FIFO type notification. Please select Standard when creating a SNS Topic.

When you finish creating a new SNS topic, copy the SNS ARN and save it for later to setup SNS notification on FortiCNP.

Create New SNS Notification Target on FortiCNP

  1. In Notification Target Name, enter a name for this notification.

  2. In SNS Recipient, click AWS Account ID drop down menu to select the AWS account that has the new SNS topic created.
  3. In SNS ARN field, paste the SNS ARN that you copied earlier from the new SNS topic details.
  4. In Alert Notification, turn On/Off the alert notification triggered by policy violations.

  5. Click Send Notification for Alert Triggered By Objects In drop down menu and select resource group(s). Only the alerts triggered by the selected resource groups will send notification. You can monitor all cloud accounts be selecting All Resource. To create a resource group, please see Resource Group.

  6. Select the method that the notification should be triggered by - Severity Level or Specific Policy.
    1. When Severity Level is selected, select the severity level the notification will be triggered by. Only the alerts triggered by the selected severity level will send notifications

    2. When Specific Policy is selected, click select policy drop down menu and select at least one policy. Only the alerts triggered by the selected policy will sent notifications.

  7. Check Send Notification for the Same Alerts to prevent receiving the same notification within 24 hour period.

  8. Click Add New Notification Target to finish.

Previous
Next

Add Amazon SNS Notification Target

Amazon Simple Notification Service (Amazon SNS) is an Amazon message service that manages push messages and subscribed endpoints, it also let you create and deliver messages for distributed services. You may use Amazon SNS to create subscription endpoints for FortiCNP notifications.

Prerequisite

Before setup Amazon SNS with FortiCNP notification, the AWS account on FortiCNP must have Notification Permission. Notification permission can be granted to FortiCNP during AWS account onboarding.

If the Notification Permission was not selected during the AWS account onboarding process, you can update the account installation to include the Notification Permission. Please see Update AWS Account Automatically or Update AWS Organization.

Create New SNS Topic on AWS

After you verify that Notification Permission is added to AWS account, you can create a new SNS topic on AWS.

Follow the AWS tutorial guide to create a new Amazon SNS topic:

https://docs.aws.amazon.com/sns/latest/dg/CreateTopic.html

Note: FortiCNP only supports Standard type, not FIFO type notification. Please select Standard when creating a SNS Topic.

When you finish creating a new SNS topic, copy the SNS ARN and save it for later to setup SNS notification on FortiCNP.

Create New SNS Notification Target on FortiCNP

  1. In Notification Target Name, enter a name for this notification.

  2. In SNS Recipient, click AWS Account ID drop down menu to select the AWS account that has the new SNS topic created.
  3. In SNS ARN field, paste the SNS ARN that you copied earlier from the new SNS topic details.
  4. In Alert Notification, turn On/Off the alert notification triggered by policy violations.

  5. Click Send Notification for Alert Triggered By Objects In drop down menu and select resource group(s). Only the alerts triggered by the selected resource groups will send notification. You can monitor all cloud accounts be selecting All Resource. To create a resource group, please see Resource Group.

  6. Select the method that the notification should be triggered by - Severity Level or Specific Policy.
    1. When Severity Level is selected, select the severity level the notification will be triggered by. Only the alerts triggered by the selected severity level will send notifications

    2. When Specific Policy is selected, click select policy drop down menu and select at least one policy. Only the alerts triggered by the selected policy will sent notifications.

  7. Check Send Notification for the Same Alerts to prevent receiving the same notification within 24 hour period.

  8. Click Add New Notification Target to finish.

Previous
Next