Microsoft Azure

Microsoft Azure

Perform the following steps to deploy FortiGuest on Microsoft Azure.

Obtain the FortiGuest_VM64_AZURE-v1.3.0-[build0xxx].azure.zip file from Fortinet and extract it to obtain the FortiGuest_VM64_AZURE-v1.3.0-[build0xxx].vhd file.
Create a Resource Group and a Storage Account via the Azure CLI. See Mange Azure Resource Group.
Create a Container registry. See Create a container registry.
Upload the VHD file to Azure.
Obtain the SAS string from the Azure portal. Navigate to Storage Accounts > Shared access signature. Configure the parameters in the page and click Generate SAS and connection string.

Paste the SAS code from the generated string and upload the VHD file.
./azcopy cp "./FortiGuest_VM64_AZURE-v1.3.0-devmain0005.vhd" "https://fortiguest.blob.core.windows.net/fguest/?sv=2022-11-02&ss=bfqt&srt=sco&sp=rwdlacupiytfx&se=2024-02-08T20:36:43Z&st=2024-02-08T12:36:43Z&spr=https&sig=UOaq5aSWEpS%2BWesKJXTT9IJ4WC%2Bc8QM2NbWaem2FGVc%3D" --blob-type=PageBlob.
For more information on the azcopy command, see azcopy copy.
After the upload is successfully completed, you can view the file in Storage Accounts > Container.
Create a managed image from the uploaded VHD file. Navigate to Images > Create an image in the Azure portal and configure the following settings.

OS type – Linux
VM generation – Gen 1
Storage blob – Browse to the uploaded VHD file.
Note: You are not required to add the data disk as it is created along with the VM.

Create the VM from the managed image that you just generated.

Image - Select the managed image generated in the previous step.
Select inbound ports - Configure network inbound rules to allow SSH access.

Click Next: Disks to configure disk data. The recommended disk size is a minimum of 500 GB.

Connect the VM via SSH or the serial console.

To connect via SSH, obtain the public IP address of the VM – ssh admin@ <public_ip_address>.
To connect via the serial console, select the running VM and click Serial Console. Click on the prompt in the right to configure.

Click Save.

Microsoft Azure

Perform the following steps to deploy FortiGuest on Microsoft Azure.

Obtain the FortiGuest_VM64_AZURE-v1.3.0-[build0xxx].azure.zip file from Fortinet and extract it to obtain the FortiGuest_VM64_AZURE-v1.3.0-[build0xxx].vhd file.
Create a Resource Group and a Storage Account via the Azure CLI. See Mange Azure Resource Group.
Create a Container registry. See Create a container registry.
Upload the VHD file to Azure.
Obtain the SAS string from the Azure portal. Navigate to Storage Accounts > Shared access signature. Configure the parameters in the page and click Generate SAS and connection string.

Paste the SAS code from the generated string and upload the VHD file.
./azcopy cp "./FortiGuest_VM64_AZURE-v1.3.0-devmain0005.vhd" "https://fortiguest.blob.core.windows.net/fguest/?sv=2022-11-02&ss=bfqt&srt=sco&sp=rwdlacupiytfx&se=2024-02-08T20:36:43Z&st=2024-02-08T12:36:43Z&spr=https&sig=UOaq5aSWEpS%2BWesKJXTT9IJ4WC%2Bc8QM2NbWaem2FGVc%3D" --blob-type=PageBlob.
For more information on the azcopy command, see azcopy copy.
After the upload is successfully completed, you can view the file in Storage Accounts > Container.
Create a managed image from the uploaded VHD file. Navigate to Images > Create an image in the Azure portal and configure the following settings.

OS type – Linux
VM generation – Gen 1
Storage blob – Browse to the uploaded VHD file.
Note: You are not required to add the data disk as it is created along with the VM.

Create the VM from the managed image that you just generated.

Image - Select the managed image generated in the previous step.
Select inbound ports - Configure network inbound rules to allow SSH access.

Click Next: Disks to configure disk data. The recommended disk size is a minimum of 500 GB.

Connect the VM via SSH or the serial console.

To connect via SSH, obtain the public IP address of the VM – ssh admin@ <public_ip_address>.
To connect via the serial console, select the running VM and click Serial Console. Click on the prompt in the right to configure.

Click Save.

Secure Networking

Hybrid Mesh Firewall

NOC Management

LAN

WAN

Unified SASE

Single Vendor SASE

Cloud Network Security

Secure Endpoint Connectivity

Web Application / API Protection

Security Operations

Security Operations Automation

Identity

Early Detection & Prevention

Secure Networking

Hybrid Mesh Firewall

NOC Management

LAN

WAN

Communication & Surveillance

Unified SASE

Single Vendor SASE

Secure Endpoint Connectivity

Cloud Network Security

Cloud-Native Security

Web Application / API Protection

Security Operations

Security Operations Automation

Endpoint

Data Protection

Identity

Email

Early Detection & Prevention

Expert Services

Edge Firewall

Orchestration & management

SD Branch

Application Delivery

Single Vendor SASE

Secure Endpoint Connectivity

Secure Private Access

Thin Edge

Identity

Application Gateway

Enterprise Asset Management

Endpoint Agent

Agentless Security Posture

Identity

Wireless

Switching

Identity

Privilege Acccess Management

Next Generation Firewall

Orchestration & management

Expert Services

All

All

Account Management

SAAS Management

SAAS Application Security

Managed Services

Platform as a service (PAAS)

Other SAAS Services

4D Pillars

Cloud

Popular Solutions

User Guide

Microsoft Azure

Microsoft Azure

Microsoft Azure