Fortinet black logo

Setting Up FortiManager

Copy Link
Copy Doc ID 2b181e62-80a4-11e9-81a4-00505692583a:268859
Download PDF

Setting Up FortiManager

Set up FortiManager to use the Security Operations FortiManager Integration App.

Task

Description

Create or select an account to use for integration with the FortiManager Integration App.

This account does not require a Super_User administrator profile and Trusted Hosts does not need to be turned on.

For more information, see the FortiManager Administration Guide in the Fortinet Document Library.

Set up JSON-RPC read-write permission for the account.

API calls from the app require the account to have JSON-RPC read-write permission.

Use CLI commands to set JSON-RPC permission:

config system admin user

edit servicenow_account

set rpc-permit read-write

end

Install a trusted, signed SSL certificate and CA certificate for secure API communication.

ServiceNow requires a trusted, signed SSL certificate and CA certificate for communication with FortiManager.

For more information, see the Certificates section in the FortiManager Administration Guide.

If workspace mode is enabled, ensure it is set to normal.

Only normal workspace mode is supported. The app automatically detects the FortiManager workspace mode.

For more information, see the FortiManager Administration Guide in the Fortinet Document Library.

Ensure ADOM Mode is set to Normal.

In FortiManager > Advanced Settings, ADOM Mode must be set to Normal. Advanced mode is not supported.

Using FortiManager scripts

Create scripts in FortiManager to be used in FortiManager Integration App.

Use a FortiManager admin account to create or modify scripts.

The FortiManager Integration App clones the script and replaces any variables with the value provided in FortiManager Integration App GUI or API; and then submits the change request to FortiManager.

Variables in FortiManager scripts must meet the following requirements:

  • Script variable names can only use upper case A-Z, lower case a-z, or underscore (_).
  • Script variables must use the format: ${variable_name}.

For information on creating FortiManager scripts, see the FortiManager Administration Guide in the Fortinet Document Library.

Downloading the Security Operations FortiManager Integration App

You need a ServiceNow subscription to download and use ServiceNow apps, including the FortiManager Integration App. For more information, see the online help in https://store.servicenow.com.

To download the FortiManager Integration App:
  1. Go to the ServiceNow store at https://store.servicenow.com.
  2. Search for the FortiManager Integration App.
  3. Follow the onscreen instructions to download the FortiManager Integration App.

After downloading the FortiManager Integration App, add it to the Favorites menu for easy access.

Setting Up FortiManager

Set up FortiManager to use the Security Operations FortiManager Integration App.

Task

Description

Create or select an account to use for integration with the FortiManager Integration App.

This account does not require a Super_User administrator profile and Trusted Hosts does not need to be turned on.

For more information, see the FortiManager Administration Guide in the Fortinet Document Library.

Set up JSON-RPC read-write permission for the account.

API calls from the app require the account to have JSON-RPC read-write permission.

Use CLI commands to set JSON-RPC permission:

config system admin user

edit servicenow_account

set rpc-permit read-write

end

Install a trusted, signed SSL certificate and CA certificate for secure API communication.

ServiceNow requires a trusted, signed SSL certificate and CA certificate for communication with FortiManager.

For more information, see the Certificates section in the FortiManager Administration Guide.

If workspace mode is enabled, ensure it is set to normal.

Only normal workspace mode is supported. The app automatically detects the FortiManager workspace mode.

For more information, see the FortiManager Administration Guide in the Fortinet Document Library.

Ensure ADOM Mode is set to Normal.

In FortiManager > Advanced Settings, ADOM Mode must be set to Normal. Advanced mode is not supported.

Using FortiManager scripts

Create scripts in FortiManager to be used in FortiManager Integration App.

Use a FortiManager admin account to create or modify scripts.

The FortiManager Integration App clones the script and replaces any variables with the value provided in FortiManager Integration App GUI or API; and then submits the change request to FortiManager.

Variables in FortiManager scripts must meet the following requirements:

  • Script variable names can only use upper case A-Z, lower case a-z, or underscore (_).
  • Script variables must use the format: ${variable_name}.

For information on creating FortiManager scripts, see the FortiManager Administration Guide in the Fortinet Document Library.

Downloading the Security Operations FortiManager Integration App

You need a ServiceNow subscription to download and use ServiceNow apps, including the FortiManager Integration App. For more information, see the online help in https://store.servicenow.com.

To download the FortiManager Integration App:
  1. Go to the ServiceNow store at https://store.servicenow.com.
  2. Search for the FortiManager Integration App.
  3. Follow the onscreen instructions to download the FortiManager Integration App.

After downloading the FortiManager Integration App, add it to the Favorites menu for easy access.