Fortinet Document Library

Version:

Version:

Version:

Version:

Version:

Version:


Table of Contents

Administration Guide

Lure Resources

The Deception > Lure Resources page allows you to:

  • View current lures.
  • Upload a lure resource to automatically generate lures.
    • Office and PDF files that generate an authentic directories and files over the Decoy network shares.
    • Username list files that generate an authentic credentials access to the network Decoys.
  • Import a user name list from an LDAP server and save the file in the backend. This import generates an authentic credentials access to the network Decoys.
To upload a lure resource:
  1. Go to Deception > Lure Resources.
  2. Click Upload.
  3. Select the Lure Type from the dropdown list.
  4. Enter an optional Tag, such as any.
  5. Specify a Resource File and click Save.
To import an LDAP user list:
  1. Go to Deception > Lure Resources.
  2. Click Import Users from LDAP.
  3. Specify the import settings and click Save.
LDAP example
"dn": "uid=test,o=fdc,dc=fortinet,dc=com",
"url": "ldap://172.16.69.90/o=fdc,dc=fortinet,dc=com?uid?sub?(objectclass=*)",
"password": "fortinet"
Windows AD example
"version": "3", 
"dn": "cn=aduser1,cn=users,dc=fdc,dc=net",
"url": "ldap://172.16.69.69/cn=users,dc=fdc,dc=net?sAMAccountName?sub?(objectClass=user)",
"password": "WinSvr2016"

Support is offered if the format of the tree can parse uid/sAMAccountName in the search results. Ensure the URL queries the proper data.

Lure Resources

The Deception > Lure Resources page allows you to:

  • View current lures.
  • Upload a lure resource to automatically generate lures.
    • Office and PDF files that generate an authentic directories and files over the Decoy network shares.
    • Username list files that generate an authentic credentials access to the network Decoys.
  • Import a user name list from an LDAP server and save the file in the backend. This import generates an authentic credentials access to the network Decoys.
To upload a lure resource:
  1. Go to Deception > Lure Resources.
  2. Click Upload.
  3. Select the Lure Type from the dropdown list.
  4. Enter an optional Tag, such as any.
  5. Specify a Resource File and click Save.
To import an LDAP user list:
  1. Go to Deception > Lure Resources.
  2. Click Import Users from LDAP.
  3. Specify the import settings and click Save.
LDAP example
"dn": "uid=test,o=fdc,dc=fortinet,dc=com",
"url": "ldap://172.16.69.90/o=fdc,dc=fortinet,dc=com?uid?sub?(objectclass=*)",
"password": "fortinet"
Windows AD example
"version": "3", 
"dn": "cn=aduser1,cn=users,dc=fdc,dc=net",
"url": "ldap://172.16.69.69/cn=users,dc=fdc,dc=net?sAMAccountName?sub?(objectClass=user)",
"password": "WinSvr2016"

Support is offered if the format of the tree can parse uid/sAMAccountName in the search results. Ensure the URL queries the proper data.