Fortinet black logo

online help

Predefined Policy Configuration

Copy Link
Copy Doc ID 58cdf477-b7d4-11ea-8b7d-00505692583a:929782

Predefined Policy Configuration

Predefined policies make policy configuration at ease with suggestion on fixing issues when alerts are triggered.

Policy needs to be enabled for alerts to be triggered on FortiCWP. This also applies to C-Level and Compliance Report, only enabled policies will generate data on reports.

Select any type of policy from Policy drop down menu (Risk Assessment, Data Analysis, etc.), and select Predefined policies tab.

Follow the steps below to configure predefined policies.

  1. Go to any predefined policy.
  2. Click the right arrow sign > next to the policy to expand it.
  3. Click on Context tab to show configuration menu.
  4. Click on Enabled toggle button to enable the policy.
  5. Configure the rest of the configuration using the Policy Configuration Parameter Table below.
  6. Click Save to complete the configuration.

The policy you configured should be activated after a few minutes.

Policy Configuration Parameter Table

Parameter Description
General Tab
Name Shows the name of the policy. Not configurable.
Policy Description Shows the description of the policy. Not configurable.
Severity Level Specify the severity level for the policy. Not configurable
Context Tab
Enabled Click to enable/disable the policy.
Applied To Click to select which cloud account and platform the policy should apply to.
Event Select the event in which the policy should be applied on. For example, login/logout, etc.
Location Select or exclude the location which the policy should be applied on.

Velocity Settings

Maximum speed user can be traveling before the policy trigger an alert. This applies to security policies that monitors login activities. For examples on using this parameter, please see Threat Protection - Suspicious Movement.

Distance Tolerance

Maximum distance for a user to travel in the vicinity before checking the velocity of the user. This applies to security policies that monitors login activities. For examples on using this parameter, please see Threat Protection - Suspicious Movement.

Suspicious Time

Specify the time which the policy should be monitoring the event.

Allow Autofix Click to enable or disable Auto-fixing the alert trigger by the policy.
Compliance Collection (Compliance Policy only) Select the type of collection of DLP policy or AV scan that the policy can be associated with in Compliance Collection

To setup notification to receive policy triggered alerts, refer to Notifications.

Predefined Policy Configuration

Predefined policies make policy configuration at ease with suggestion on fixing issues when alerts are triggered.

Policy needs to be enabled for alerts to be triggered on FortiCWP. This also applies to C-Level and Compliance Report, only enabled policies will generate data on reports.

Select any type of policy from Policy drop down menu (Risk Assessment, Data Analysis, etc.), and select Predefined policies tab.

Follow the steps below to configure predefined policies.

  1. Go to any predefined policy.
  2. Click the right arrow sign > next to the policy to expand it.
  3. Click on Context tab to show configuration menu.
  4. Click on Enabled toggle button to enable the policy.
  5. Configure the rest of the configuration using the Policy Configuration Parameter Table below.
  6. Click Save to complete the configuration.

The policy you configured should be activated after a few minutes.

Policy Configuration Parameter Table

Parameter Description
General Tab
Name Shows the name of the policy. Not configurable.
Policy Description Shows the description of the policy. Not configurable.
Severity Level Specify the severity level for the policy. Not configurable
Context Tab
Enabled Click to enable/disable the policy.
Applied To Click to select which cloud account and platform the policy should apply to.
Event Select the event in which the policy should be applied on. For example, login/logout, etc.
Location Select or exclude the location which the policy should be applied on.

Velocity Settings

Maximum speed user can be traveling before the policy trigger an alert. This applies to security policies that monitors login activities. For examples on using this parameter, please see Threat Protection - Suspicious Movement.

Distance Tolerance

Maximum distance for a user to travel in the vicinity before checking the velocity of the user. This applies to security policies that monitors login activities. For examples on using this parameter, please see Threat Protection - Suspicious Movement.

Suspicious Time

Specify the time which the policy should be monitoring the event.

Allow Autofix Click to enable or disable Auto-fixing the alert trigger by the policy.
Compliance Collection (Compliance Policy only) Select the type of collection of DLP policy or AV scan that the policy can be associated with in Compliance Collection

To setup notification to receive policy triggered alerts, refer to Notifications.