Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Administration Guide

    Home FortiDeceptor 3.1.1 Administration Guide
    3.1.1
    6.0.1
    6.0.0
    5.3.2
    5.3.1
    5.3.0
    5.2.0
    5.1.0
    5.0.0
    4.3.0
    4.2.0
    4.1.1
    4.1.0
    4.0.2
    4.0.1
    4.0.0
    3.3.3
    3.3.2
    3.3.1
    3.3.0
    3.2.2
    3.2.1
    3.2.0
    3.1.1
    3.1.0
    3.0.2
    3.0.1
    3.0.0
    2.1.0
    2.0.0
    1.1.0
    1.0.1

    FortiGate Integration

    FortiGate Integration

    Use Fabric > FortiGate Integration to configure FortiGate settings for integration with FortiDeceptor. FortiDeceptor uses FortiGate REST APIs to make quarantine calls when decoys are accessed. Attackers are immediately quarantined on the FortiGate for further analysis.

    The following options are available:

    Severity level

    Select the security level. The selected level and all levels above it are blocked. For example, if you select Medium, then medium, high, and critical levels are blocked. If you select Critical, then only the critical level is blocked.

    Add new block configuration

    Create a new FortiGate integration setting.

    Update

    Save the modified FortiGate integration setting to a configuration file.

    Cancel

    Discard current changes.

    Edit

    Edit the record.

    Delete

    Delete the record.

    Test

    Manually send quarantine request to the corresponding FortiGate.

    The following information is displayed:

    Name

    Alias of the integrated FortiGate.

    IP

    IP address of the integrated FortiGate.

    User

    Username of the integrated FortiGate.

    Password

    Password of that username.

    Port

    Port number of the integrated FortiGate REST API service. Default is 443.

    Default Expiry

    Default blocking time in second. Default is 3600 seconds.

    Default VDOM

    The default access VDOM of the integrated FortiGate.

    Type

    FortiGate (read-only value).

    Enabled

    Enable or disable the integration setting.
    Previous
    Next

    FortiGate Integration

    FortiGate Integration

    Use Fabric > FortiGate Integration to configure FortiGate settings for integration with FortiDeceptor. FortiDeceptor uses FortiGate REST APIs to make quarantine calls when decoys are accessed. Attackers are immediately quarantined on the FortiGate for further analysis.

    The following options are available:

    Severity level

    Select the security level. The selected level and all levels above it are blocked. For example, if you select Medium, then medium, high, and critical levels are blocked. If you select Critical, then only the critical level is blocked.

    Add new block configuration

    Create a new FortiGate integration setting.

    Update

    Save the modified FortiGate integration setting to a configuration file.

    Cancel

    Discard current changes.

    Edit

    Edit the record.

    Delete

    Delete the record.

    Test

    Manually send quarantine request to the corresponding FortiGate.

    The following information is displayed:

    Name

    Alias of the integrated FortiGate.

    IP

    IP address of the integrated FortiGate.

    User

    Username of the integrated FortiGate.

    Password

    Password of that username.

    Port

    Port number of the integrated FortiGate REST API service. Default is 443.

    Default Expiry

    Default blocking time in second. Default is 3600 seconds.

    Default VDOM

    The default access VDOM of the integrated FortiGate.

    Type

    FortiGate (read-only value).

    Enabled

    Enable or disable the integration setting.
    Previous
    Next