Fortinet black logo

New Features

FortiTester as a Security Fabric device 7.0.1

Copy Link
Copy Doc ID 4f6cd3c1-22cb-11eb-96b9-00505692583a:943947
Download PDF

FortiTester as a Security Fabric device 7.0.1

FortiTester can be added to the Security Fabric and authorized from the Security Fabric topology views. Once added, the FortiTester will appear in the Security Fabric widget on the dashboard. A FortiTester can be added to the dashboard as a Fabric device widget.

To add FortiTester to the Security Fabric in the GUI:
  1. Enable the Security Fabric and configure the interface to allow other Security Fabric devices to join (see Configuring the root FortiGate and downstream FortiGates in the FortiOS Administration Guide).

  2. In FortiTester, enable the Security Fabric:
    1. Go to System Settings > Security Fabric > Settings.
    2. Click the toggle to enable the device (Enable Security Fabric).
    3. Enter the FortiGate Root IP Address.

    4. Click Apply.
  3. Authorize the FortiTester in FortiOS:
    1. Go to Security Fabric > Fabric Connectors.
    2. In the topology tree, click the highlighted FortiTester serial number and select Authorize.

      The authorized device appears in the topology tree. Hover over the device name to view the tooltip.

      The Security Fabric widget on the dashboard also updates when the FortiTester is authorized.

  4. Go to Security Fabric > Physical Topology or Security Fabric > Logical Topology to view more information.

    Physical topology view:

    Logical topology view:

To add a Fabric Device widget for FortiTester:
  1. Go to Dashboard > Status and click Add Widget.
  2. In the Security Fabric section, click the + beside Fabric Device.
  3. For Device, select the FortiTester.
  4. Select a Widget name and Visualization type from the dropdowns. System Information and Key-Value Pair are used in this example.
  5. Click Add Widget and click Close. The Fabric Device widget is displayed in the dashboard.

To add FortiTester to the Security Fabric in the CLI:
  1. Configure the interface to allow other Security Fabric devices to join:
    config system interface
        edit "port8"
            ...
            set allowaccess ping https ssh http fgfm fabric
            ...
        next
    end
  2. Enable the Security Fabric:
    config system csf
        set status enable
        set group-name "CSF_F"
    end
  3. In FortiTester, enable the Security Fabric:
    config system csf
        set ip 172.16.116.230
        set port 8013
        set status enable
    end
  4. Authorize the FortiTester in FortiOS:
    config system csf
        set status enable
        set group-name "CSF_F"
        config trusted-list
            edit "FTSV320000200000"
                set authorization-type certificate
                set certificate "*******************"
            next
        end
    end

FortiTester as a Security Fabric device 7.0.1

FortiTester can be added to the Security Fabric and authorized from the Security Fabric topology views. Once added, the FortiTester will appear in the Security Fabric widget on the dashboard. A FortiTester can be added to the dashboard as a Fabric device widget.

To add FortiTester to the Security Fabric in the GUI:
  1. Enable the Security Fabric and configure the interface to allow other Security Fabric devices to join (see Configuring the root FortiGate and downstream FortiGates in the FortiOS Administration Guide).

  2. In FortiTester, enable the Security Fabric:
    1. Go to System Settings > Security Fabric > Settings.
    2. Click the toggle to enable the device (Enable Security Fabric).
    3. Enter the FortiGate Root IP Address.

    4. Click Apply.
  3. Authorize the FortiTester in FortiOS:
    1. Go to Security Fabric > Fabric Connectors.
    2. In the topology tree, click the highlighted FortiTester serial number and select Authorize.

      The authorized device appears in the topology tree. Hover over the device name to view the tooltip.

      The Security Fabric widget on the dashboard also updates when the FortiTester is authorized.

  4. Go to Security Fabric > Physical Topology or Security Fabric > Logical Topology to view more information.

    Physical topology view:

    Logical topology view:

To add a Fabric Device widget for FortiTester:
  1. Go to Dashboard > Status and click Add Widget.
  2. In the Security Fabric section, click the + beside Fabric Device.
  3. For Device, select the FortiTester.
  4. Select a Widget name and Visualization type from the dropdowns. System Information and Key-Value Pair are used in this example.
  5. Click Add Widget and click Close. The Fabric Device widget is displayed in the dashboard.

To add FortiTester to the Security Fabric in the CLI:
  1. Configure the interface to allow other Security Fabric devices to join:
    config system interface
        edit "port8"
            ...
            set allowaccess ping https ssh http fgfm fabric
            ...
        next
    end
  2. Enable the Security Fabric:
    config system csf
        set status enable
        set group-name "CSF_F"
    end
  3. In FortiTester, enable the Security Fabric:
    config system csf
        set ip 172.16.116.230
        set port 8013
        set status enable
    end
  4. Authorize the FortiTester in FortiOS:
    config system csf
        set status enable
        set group-name "CSF_F"
        config trusted-list
            edit "FTSV320000200000"
                set authorization-type certificate
                set certificate "*******************"
            next
        end
    end