Fortinet white logo
Fortinet white logo

Administration Guide

Integration with FortiEDR

Integration with FortiEDR

To integrate FortiDeceptor with FortiEDR:

  1. Configure FortiEDR.
  2. Configuration on FortiDeceptor.

1. Configure FortiEDR

FortiDeceptor performs API calls using basic authentication by supplying a username and password. The user performing the calls must have the relevant REST API role defined in FortiEDR.

A user attempting to perform API calls without the REST API role sees a 401 Unauthorized Access error code. The Admin role does not provide access to the REST API layer, and does not contain the REST API role.

2. Configuration on FortiDeceptor

  1. In FortiDeceptor, go to Fabric > Quarantine Integration and click Quarantine Integration With New Device.

  2. Configure the integration settings and click Save.

    Integrate MethodSelect FortiEDR-Isolation.
    IPEnter the IP address of the FortiEDR.
    Organization\UsernameSeparate the organization and username with a backslash (\) if organization is applicable.
    PasswordEnter the password for the FortiEDR username.

Integration with FortiEDR

Integration with FortiEDR

To integrate FortiDeceptor with FortiEDR:

  1. Configure FortiEDR.
  2. Configuration on FortiDeceptor.

1. Configure FortiEDR

FortiDeceptor performs API calls using basic authentication by supplying a username and password. The user performing the calls must have the relevant REST API role defined in FortiEDR.

A user attempting to perform API calls without the REST API role sees a 401 Unauthorized Access error code. The Admin role does not provide access to the REST API layer, and does not contain the REST API role.

2. Configuration on FortiDeceptor

  1. In FortiDeceptor, go to Fabric > Quarantine Integration and click Quarantine Integration With New Device.

  2. Configure the integration settings and click Save.

    Integrate MethodSelect FortiEDR-Isolation.
    IPEnter the IP address of the FortiEDR.
    Organization\UsernameSeparate the organization and username with a backslash (\) if organization is applicable.
    PasswordEnter the password for the FortiEDR username.