Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Administration Guide

    Home FortiGate CNF Administration Guide

    Creating a new Azure FortiGate CNF instance

    Creating a new Azure FortiGate CNF instance

    To create a new Azure FortiGate CNF instance:

    1. In CNF Instances, click New and select Azure.

    2. In CNF Name, Enter a unique name for this instance.

    3. Select the region where the instance will be deployed, which is the region containing the workload. East-west configurations in Azure are not supported.

      For more information about possible deployment scenarios, see Deployment scenarios.

    4. Enable or disable FortiManager mode. For more information, see FortiManager mode.

      Tooltip

      If FortiManager mode is enabled when creating a FortiGate CNF instance, policy management for this instance is disabled in the FortiGate CNF console.

      You will be provided with the IP address and login credentials to the FortiGate, which you can use to add the device to FortiManager.

    5. In Internal Logging > Blob Storage Logging, enable or disable logging to Azure blob storage.

    6. In External Logging, select one of the available options:

      • None: disable external logging.

      • External Syslog: Enter the External Syslog Server IP.

      • FortiAnalyzer: Enter the FortiAnalyzer IP.

      For more information about FortiGate log messages and formats, see the FortiOS Log Message reference.

    7. Configure External System Connectivity as needed:

    8. Optionally, add endpoints. For more information about endpoints, see Adding an endpoint to an Azure instance.

    9. Click OK.

      The CNF Instances list displays, with the new instance having a status of Initializing. After the instance has initialized, the status changes to Active and the instance can be configured with endpoints and policy sets.

      In the background, the FortiGate CNF instances and other infrastructure are created. This process takes approximately 10 minutes.

    Previous
    Next

    Creating a new Azure FortiGate CNF instance

    Creating a new Azure FortiGate CNF instance

    To create a new Azure FortiGate CNF instance:

    1. In CNF Instances, click New and select Azure.

    2. In CNF Name, Enter a unique name for this instance.

    3. Select the region where the instance will be deployed, which is the region containing the workload. East-west configurations in Azure are not supported.

      For more information about possible deployment scenarios, see Deployment scenarios.

    4. Enable or disable FortiManager mode. For more information, see FortiManager mode.

      Tooltip

      If FortiManager mode is enabled when creating a FortiGate CNF instance, policy management for this instance is disabled in the FortiGate CNF console.

      You will be provided with the IP address and login credentials to the FortiGate, which you can use to add the device to FortiManager.

    5. In Internal Logging > Blob Storage Logging, enable or disable logging to Azure blob storage.

    6. In External Logging, select one of the available options:

      • None: disable external logging.

      • External Syslog: Enter the External Syslog Server IP.

      • FortiAnalyzer: Enter the FortiAnalyzer IP.

      For more information about FortiGate log messages and formats, see the FortiOS Log Message reference.

    7. Configure External System Connectivity as needed:

    8. Optionally, add endpoints. For more information about endpoints, see Adding an endpoint to an Azure instance.

    9. Click OK.

      The CNF Instances list displays, with the new instance having a status of Initializing. After the instance has initialized, the status changes to Active and the instance can be configured with endpoints and policy sets.

      In the background, the FortiGate CNF instances and other infrastructure are created. This process takes approximately 10 minutes.

    Previous
    Next