Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Administration Guide

    Home FortiGate / FortiOS 7.0.1 Administration Guide
    7.0.1
    7.6.0
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.16
    7.0.15
    7.0.14
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.15
    6.4.14
    6.4.13
    6.4.12
    6.4.11
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0

    Azure Function action

    Azure Function action

    Azure functions can be called when an automation stitch is triggered. This example uses a Security Rating Summary trigger in the automation stitch.

    To configure an Azure function automation stitch in the GUI:
    1. Go to Security Fabric > Automation and click Create New.
    2. Enter the stitch name.
    3. Configure the trigger:
      1. Click Add Trigger.
      2. Click Create and select Security Rating Summary.
      3. Enter the following:

        Name

        auto-azure

        Report

        Security Posture

      4. Click OK.
      5. Select the trigger in the list and click Apply.
    4. Configure the Azure Function action:
      1. Click Add Action.
      2. Click Create and select Azure Function.
      3. Enter the following:

        Name

        azure_function

        URL

        Enter the request API URI

        Authorization

        Function

        API key

        Enter the API key

        HTTP header

        header1 : value1

      4. Click OK.
      5. Select the action in the list and click Apply.
    5. Click OK.
    To configure an Azure function automation stitch in the CLI:
    1. Create an automation trigger:
      config system automation-trigger
    edit "auto-azure"
        set event-type security-rating-summary
    next
end
    2. Create an automation action:
      config system automation-action
    edit "azure_function"
        set action-type azure-function
        set azure-function-authorization function
        set azure-api-key **********
        set uri "xxxxx00-no-delete-xxxx.azurewebsites.net/api/headersResponse"
        set headers "header1:value1"
    next
end
    3. Create the automation stitch:
      config system automation-stitch
    edit "auto-azure"
        set trigger "auto-azure"
        config actions
            edit 1
                set action "azure_function"
                set required enable
            next
        end
    next
end

    When the automation stitch is triggered, the Security Fabric > Automation page shows the stitch trigger time. In Azure, the function log shows that the function was called, executed, and finished:

    Previous
    Next

    Azure Function action

    Azure Function action

    Azure functions can be called when an automation stitch is triggered. This example uses a Security Rating Summary trigger in the automation stitch.

    To configure an Azure function automation stitch in the GUI:
    1. Go to Security Fabric > Automation and click Create New.
    2. Enter the stitch name.
    3. Configure the trigger:
      1. Click Add Trigger.
      2. Click Create and select Security Rating Summary.
      3. Enter the following:

        Name

        auto-azure

        Report

        Security Posture

      4. Click OK.
      5. Select the trigger in the list and click Apply.
    4. Configure the Azure Function action:
      1. Click Add Action.
      2. Click Create and select Azure Function.
      3. Enter the following:

        Name

        azure_function

        URL

        Enter the request API URI

        Authorization

        Function

        API key

        Enter the API key

        HTTP header

        header1 : value1

      4. Click OK.
      5. Select the action in the list and click Apply.
    5. Click OK.
    To configure an Azure function automation stitch in the CLI:
    1. Create an automation trigger:
      config system automation-trigger
    edit "auto-azure"
        set event-type security-rating-summary
    next
end
    2. Create an automation action:
      config system automation-action
    edit "azure_function"
        set action-type azure-function
        set azure-function-authorization function
        set azure-api-key **********
        set uri "xxxxx00-no-delete-xxxx.azurewebsites.net/api/headersResponse"
        set headers "header1:value1"
    next
end
    3. Create the automation stitch:
      config system automation-stitch
    edit "auto-azure"
        set trigger "auto-azure"
        config actions
            edit 1
                set action "azure_function"
                set required enable
            next
        end
    next
end

    When the automation stitch is triggered, the Security Fabric > Automation page shows the stitch trigger time. In Azure, the function log shows that the function was called, executed, and finished:

    Previous
    Next