Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • FortiClient EMS Integration

    Home FortiEDR/XDR 6.2.0 FortiClient EMS Integration
    6.2.0
    6.2.0
    6.0.0

    Configuring FortiClient EMS on-premise

    Configuring FortiClient EMS on-premise

    To integrate FortiEDR with on-premise FortiClient EMS, you must first create an Admin Role and an Admin User that is linked to the Admin Role in FortiClient EMS. The Admin User is required for FortiEDR to update endpoint classification tags. Fortinet recommends that you create a dedicated Admin Role for FortiEDR integration.

    To create an Admin Role in FortiClient EMS:
    1. Log into FortiClient EMS.
    2. Go to Administration > Admin Roles.
    3. Click Add.
    4. In the Name field, enter the admin role name.
    5. (Optional) In the Description field, enter the description.
    6. In the Endpoint permissions field, enable Block/Unblock/Quarantine/Unquarantine endpoints and leave all other options disabled. See Admin role permissions reference for more information.

    7. Click Save.
    To create an Admin User that is linked to the Admin Role in FortiClient EMS:
    1. Log into FortiClient EMS.
    2. Go to Administration > Admin Users.
    3. Click Add.
    4. Select Create a new user and click Next.
    5. Specify a username and select the role that you created earlier.

    6. Configure the domain access so that the Admin User has access to endpoints that will be affected by the tag updates.
    7. (Optional) Enable Restrict Login to Trusted Hosts and specify the IP address of the FortiEDR JumpBox.
    8. Click Next and define the password for the Admin User.

      Note down the username and password as you will need to provide the information when Configuring FortiEDR.

    9. Click Finish.
    Previous
    Next

    Configuring FortiClient EMS on-premise

    Configuring FortiClient EMS on-premise

    To integrate FortiEDR with on-premise FortiClient EMS, you must first create an Admin Role and an Admin User that is linked to the Admin Role in FortiClient EMS. The Admin User is required for FortiEDR to update endpoint classification tags. Fortinet recommends that you create a dedicated Admin Role for FortiEDR integration.

    To create an Admin Role in FortiClient EMS:
    1. Log into FortiClient EMS.
    2. Go to Administration > Admin Roles.
    3. Click Add.
    4. In the Name field, enter the admin role name.
    5. (Optional) In the Description field, enter the description.
    6. In the Endpoint permissions field, enable Block/Unblock/Quarantine/Unquarantine endpoints and leave all other options disabled. See Admin role permissions reference for more information.

    7. Click Save.
    To create an Admin User that is linked to the Admin Role in FortiClient EMS:
    1. Log into FortiClient EMS.
    2. Go to Administration > Admin Users.
    3. Click Add.
    4. Select Create a new user and click Next.
    5. Specify a username and select the role that you created earlier.

    6. Configure the domain access so that the Admin User has access to endpoints that will be affected by the tag updates.
    7. (Optional) Enable Restrict Login to Trusted Hosts and specify the IP address of the FortiEDR JumpBox.
    8. Click Next and define the password for the Admin User.

      Note down the username and password as you will need to provide the information when Configuring FortiEDR.

    9. Click Finish.
    Previous
    Next