Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Administration Guide

    Home FortiDeceptor 6.2.1 Administration Guide
    6.2.1
    6.2.1
    6.2.0
    6.1.1
    6.1.0
    6.0.3
    6.0.2
    6.0.1
    6.0.0
    5.3.4
    5.3.3
    5.3.2
    5.3.1
    5.3.0
    5.2.2
    5.2.0
    5.1.0
    5.0.0
    4.3.0
    4.2.0
    4.1.1
    4.1.0
    4.0.2
    4.0.1
    4.0.0
    3.3.3
    3.3.2
    3.3.1
    3.3.0
    3.2.2
    3.2.1
    3.2.0
    3.1.1
    3.1.0
    3.0.2
    3.0.1
    3.0.0
    2.1.0
    2.0.0
    1.1.0
    1.0.1

    Deploy the Windows 10 decoy with Active Directory (AD)

    Deploy the Windows 10 decoy with Active Directory (AD)

    Deploying the Windows 10 decoy within an Active Directory (AD) domain enhances network security through deception technology. This process involves configuring and integrating decoy systems into the network to mimic real assets, attracting and detecting potential cyber threats.

    In FortiDeceptor, the deployment of Windows 10v1 decoys is streamlined through the Deployment Wizard. This tool guides you through the necessary steps to configure and deploy decoys effectively. Key configurations include selecting the Windows 10v1 template, specifying domain credentials, and setting network parameters such as the domain IP and address.

    By enabling domain users to access Remote Desktop Protocol (RDP) and Server Message Block (SMB) services, the decoys can simulate realistic network interactions. Additionally, the system automatically enables critical security settings such as Anti-Deception Detection to enhance the decoy's effectiveness.

    To download the Windows 10 decoy:

    Go to Deception OS and down load the win10v1 decoy. Please allow time for the OS to download.

    To deploy the win10v1 decoy with AD:
    1. Go to Deception > Deployment Wizard and click Create a new decoy.
    2. Configure the OS for Windows 10. From the Available Deception OSes dropdown, select win10v1.

      For detailed information about creating a new decoy, see Deployment Wizard.

    3. In the RDP and SMB decoys, enter valid usernames and passwords for the AD domain users. Click Next.

      Note

      As of version 6.1, the settings for Allow domain users to access SMB/RDP and Anti-Deception Detection have been removed. These features are now automatically enabled when you enter an AD account in the format: adlure@exampledomain.com.

    4. In the Set Network step, configure the DNS serve settings:
      DNSEnter the Domain IP
      DomainEnter the domain address. The Domain Account, Domain Password, and Organization Unit fields are displayed

      Hostname

      Enter a unique hostname that complies with Windows policy and is different from the original hostname set during the customization stage.

      Domain AccountEnter the domain account.
      Domain PasswordEnter the domain password.

      Organization Unit

      Enter the Organization Unit.

    Previous
    Next

    Deploy the Windows 10 decoy with Active Directory (AD)

    Deploy the Windows 10 decoy with Active Directory (AD)

    Deploying the Windows 10 decoy within an Active Directory (AD) domain enhances network security through deception technology. This process involves configuring and integrating decoy systems into the network to mimic real assets, attracting and detecting potential cyber threats.

    In FortiDeceptor, the deployment of Windows 10v1 decoys is streamlined through the Deployment Wizard. This tool guides you through the necessary steps to configure and deploy decoys effectively. Key configurations include selecting the Windows 10v1 template, specifying domain credentials, and setting network parameters such as the domain IP and address.

    By enabling domain users to access Remote Desktop Protocol (RDP) and Server Message Block (SMB) services, the decoys can simulate realistic network interactions. Additionally, the system automatically enables critical security settings such as Anti-Deception Detection to enhance the decoy's effectiveness.

    To download the Windows 10 decoy:

    Go to Deception OS and down load the win10v1 decoy. Please allow time for the OS to download.

    To deploy the win10v1 decoy with AD:
    1. Go to Deception > Deployment Wizard and click Create a new decoy.
    2. Configure the OS for Windows 10. From the Available Deception OSes dropdown, select win10v1.

      For detailed information about creating a new decoy, see Deployment Wizard.

    3. In the RDP and SMB decoys, enter valid usernames and passwords for the AD domain users. Click Next.

      Note

      As of version 6.1, the settings for Allow domain users to access SMB/RDP and Anti-Deception Detection have been removed. These features are now automatically enabled when you enter an AD account in the format: adlure@exampledomain.com.

    4. In the Set Network step, configure the DNS serve settings:
      DNSEnter the Domain IP
      DomainEnter the domain address. The Domain Account, Domain Password, and Organization Unit fields are displayed

      Hostname

      Enter a unique hostname that complies with Windows policy and is different from the original hostname set during the customization stage.

      Domain AccountEnter the domain account.
      Domain PasswordEnter the domain password.

      Organization Unit

      Enter the Organization Unit.

    Previous
    Next