Requirements
ServiceNow requirements
You need a ServiceNow subscription to download and use ServiceNow apps, including the FortiManager Integration App.
ServiceNow roles
The ServiceNow account must have the right roles to submit change requests. For information on ServiceNow roles, see the ServiceNow product documentation such as Base system roles.
You also need FortiManager Integration App roles to perform the following tasks:
Role |
Description |
---|---|
x_forti_fmgintgv2.sys_prop_read |
Can read the contents in System Properties. |
x_forti_fmgintgv2.sys_prop_write |
Can read and modify the contents in System Properties. |
x_forti_fmgintgv2.fmg_script_read |
Can read the list of change requests and related details. |
x_forti_fmgintgv2.fmg_script_write |
Can submit change requests and read the list of change requests and related details. |
FortiManager and FortiManager Integration App requirements
The FortiManager Integration App works with one FortiManager device at a time. However, it can work with multiple ADOMs on FortiManager. See Configuring the FortiManager Integration App on selecting FortiManager ADOMs.
The FortiManager Integration App only executes scripts that are already defined in FortiManager.
- You can define CLI scripts to be executed on the FortiManager Device Database, Policy Package or ADOM Database, or Remote FortiGate Directly (via CLI).
- In the FortiManager Integration App GUI, you can limit the script selection to scripts with specific prefixes.
Although FortiManager cannot currently run scripts with variables, the FortiManager Integration App can take variables in scripts and replace them with the desired values before execution.
The FortiManager Integration App automatically detects the FortiManager workspace mode. If workspace mode is enabled, it must be set to normal. Workflow mode is not supported.
The FortiManager ADOM Mode must be set to Normal. Advanced mode is not supported.
For more information, see the FortiManager Administration guide in the Fortinet Document Library.