Fortinet Document Library

Version:


Table of Contents

Cookbook

6.0.0
Download PDF
Copy Link

Creating the Employee user and policy

  1. To create a new user, go to User & Device > User Definition (in the example, this account is called jpearson).
  2. In the User Type section, select Local User.

  3. In the Login Credentials section, set Username and set a Password.

  4. In the Contact info section, set the user’s Email Address.

  5. In the Extra Info section, verify that User Account Status is Enabled.

  6. Your FortiGate now lists the new user.

  7. To create a new user group, go to User & Device > User Groups (in the example, this group is called Employees). Add user jpearson to the Members list.

  8. The FortiGate now lists the new user group.

  9. To edit the Internet policy, go to Policy & Objects > IPv4 Policy.
  10. For Source, set Address to all and User to the Employees group.

  11. Under Security Profiles, enable AntiVirus and Web Filter. Set both to use the default profile.

  12. SSL Inspection is enabled by default. Set it to the deep-inspection profile.

    Note

    Using the deep-inspection profile may cause certificate errors.

Creating the Employee user and policy

  1. To create a new user, go to User & Device > User Definition (in the example, this account is called jpearson).
  2. In the User Type section, select Local User.

  3. In the Login Credentials section, set Username and set a Password.

  4. In the Contact info section, set the user’s Email Address.

  5. In the Extra Info section, verify that User Account Status is Enabled.

  6. Your FortiGate now lists the new user.

  7. To create a new user group, go to User & Device > User Groups (in the example, this group is called Employees). Add user jpearson to the Members list.

  8. The FortiGate now lists the new user group.

  9. To edit the Internet policy, go to Policy & Objects > IPv4 Policy.
  10. For Source, set Address to all and User to the Employees group.

  11. Under Security Profiles, enable AntiVirus and Web Filter. Set both to use the default profile.

  12. SSL Inspection is enabled by default. Set it to the deep-inspection profile.

    Note

    Using the deep-inspection profile may cause certificate errors.