Fortinet black logo

Cookbook

FortiClient EMS

Copy Link
Copy Doc ID fed12558-14f5-11e9-b86b-00505692583a:185333
Download PDF

FortiClient EMS

You can configure endpoint control for your Security Fabric using FortiClient Endpoint Management System (EMS). Up to three EMS servers can be added on the global Security Fabric settings page. EMS settings are synchronized between all fabric members.

Note

If you disable FortiClient Endpoint Management System (EMS) on the Security Fabric > Settings page, all previously configured EMS server entries will be deleted.

To add a FortiClient EMS server to the Security Fabric using the CLI:
config endpoint-control fctems
    edit <ems_name>
        set server <ip_address>
        set serial-number <string>
        set admin-username <string>
        set admin-password <string>
        set https-port <integer>
        set source-ip <ip_address>
    next
end

The https-port is the EMS HTTPS access port number, and the source-ip is the REST API call source IP address.

To add a FortiClient EMS server to the Security Fabric using the GUI:
  1. To enable endpoint control, on the root FortiGate, go to System > Feature Visibility and enable Endpoint Control.
  2. Go to Security Fabric > Settings.
  3. Enable FortiClient Endpoint Management System (EMS).

  4. Enter a Name for the EMS server.
  5. Enter the IP/Domain Name and Serial Number of the EMS server in their requisite fields.
  6. Enter the Admin User name and Password.
  7. Optionally, click the plus icon to add up to three servers.
  8. Click Apply.

FortiClient EMS

You can configure endpoint control for your Security Fabric using FortiClient Endpoint Management System (EMS). Up to three EMS servers can be added on the global Security Fabric settings page. EMS settings are synchronized between all fabric members.

Note

If you disable FortiClient Endpoint Management System (EMS) on the Security Fabric > Settings page, all previously configured EMS server entries will be deleted.

To add a FortiClient EMS server to the Security Fabric using the CLI:
config endpoint-control fctems
    edit <ems_name>
        set server <ip_address>
        set serial-number <string>
        set admin-username <string>
        set admin-password <string>
        set https-port <integer>
        set source-ip <ip_address>
    next
end

The https-port is the EMS HTTPS access port number, and the source-ip is the REST API call source IP address.

To add a FortiClient EMS server to the Security Fabric using the GUI:
  1. To enable endpoint control, on the root FortiGate, go to System > Feature Visibility and enable Endpoint Control.
  2. Go to Security Fabric > Settings.
  3. Enable FortiClient Endpoint Management System (EMS).

  4. Enter a Name for the EMS server.
  5. Enter the IP/Domain Name and Serial Number of the EMS server in their requisite fields.
  6. Enter the Admin User name and Password.
  7. Optionally, click the plus icon to add up to three servers.
  8. Click Apply.