Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Administration Guide

    Home FortiManager 6.2.13 Administration Guide
    6.2.13
    7.6.1
    7.6.0
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.15
    6.4.14
    6.4.13
    6.4.12
    6.4.11
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.2.13
    6.2.12
    6.2.11
    6.2.10
    6.2.9
    6.2.8
    6.2.7
    6.2.6
    6.2.6
    6.2.5
    6.2.3
    6.2.2
    6.2.1
    6.2.0
    6.0.12
    6.0.11
    6.0.10
    6.0.9
    6.0.8
    6.0.7
    6.0.6
    6.0.5
    6.0.4
    6.0.3
    6.0.2
    6.0.1
    6.0.0
    5.6.11
    5.6.10
    5.6.9
    5.6.8
    5.6.7
    5.6.6
    5.6.5
    5.6.4
    5.6.3
    5.6.2
    5.6.1
    5.6.0
    5.4.7
    5.4.6
    5.4.5
    5.4.4
    5.4.3
    5.4.2
    5.4.1
    5.4.0
    5.2.10
    5.2.7
    5.2.6
    5.2.4
    5.2.3
    5.2.2
    5.2.1
    5.2.0
    5.0.12
    5.0.11
    5.0.10
    5.0.9
    5.0.8
    5.0.7
    5.0.6
    5.0.5
    5.0.4
    5.0.3
    5.0.2
    4.3.8
    4.3.7
    4.3.6
    4.3.5
    4.3.4
    4.3.3
    4.3.2
    4.3.1
    4.3.0
    4.2.9
    4.2.8
    4.2.7
    4.2.6
    4.2.5
    4.2.4
    4.2.3
    4.2.2
    4.2.1
    4.2.0
    4.1.0
    4.0.3
    4.0.2
    4.0.1
    4.0.0

    Creating administrator profiles

    Creating administrator profiles

    To create a new administrator profile, you must be logged in to an account with sufficient privileges, or as a super user administrator.

    To create a custom administrator profile:
    1. Go to System Settings > Admin > Profile.
    2. Click Create New in the toolbar. The New Profile pane is displayed.

    3. Configure the following settings:

      Profile Name

      Enter a name for this profile.

      Description

      Optionally, enter a description for this profile. While not a requirement, a description can help to know what the profiles is for, or the levels it is set to.

      Type

      Select the type of profile, either System Admin or Restricted Admin.

      Permission

      Select which permissions to enable from Web Filter Profile, Application Filter, and IPS Sensor.

      This option is only available when Type is Restricted Admin. See Restricted administrators for information.

      Permissions

      Select None, Read Only, or Read-Write access for the categories as required.

      This option is only available when Type is System Admin.

      Privacy Masking

      Enable/disable privacy masking.

      This option is only available when FortiAnalyzer features are enabled.

      Masked Data Fields

      Select the fields to mask: Destination Name, Source IP, Destination IP, User, Source Name, Email, Message, and/or Source MAC.

      Data Mask Key

      Enter the data masking encryption key. You need the Data Mask Key to see the original data.

      Data Unmasked Time(0-365 Days)

      Enter the number of days the user assigned to this profile can see all logs without masking.

      The logs are masked if the time period in the Log View toolbar is greater than the number of days in the Data Masked Time field.

      Note
      • Only integers between 0-365 are supported.
      • Time frame masking does not apply to real time logs.
      • Time frame masking applies to custom view and drill-down data.
    4. Click OK to create the new administrator profile.

    To apply a profile to an administrator:
    1. Go to System Settings > Administrators.
    2. Create a new administrator or edit an existing administrator. The Edit Administrator pane is displayed.
    3. From the Admin Profile list, select a profile.
    Previous
    Next

    Creating administrator profiles

    Creating administrator profiles

    To create a new administrator profile, you must be logged in to an account with sufficient privileges, or as a super user administrator.

    To create a custom administrator profile:
    1. Go to System Settings > Admin > Profile.
    2. Click Create New in the toolbar. The New Profile pane is displayed.

    3. Configure the following settings:

      Profile Name

      Enter a name for this profile.

      Description

      Optionally, enter a description for this profile. While not a requirement, a description can help to know what the profiles is for, or the levels it is set to.

      Type

      Select the type of profile, either System Admin or Restricted Admin.

      Permission

      Select which permissions to enable from Web Filter Profile, Application Filter, and IPS Sensor.

      This option is only available when Type is Restricted Admin. See Restricted administrators for information.

      Permissions

      Select None, Read Only, or Read-Write access for the categories as required.

      This option is only available when Type is System Admin.

      Privacy Masking

      Enable/disable privacy masking.

      This option is only available when FortiAnalyzer features are enabled.

      Masked Data Fields

      Select the fields to mask: Destination Name, Source IP, Destination IP, User, Source Name, Email, Message, and/or Source MAC.

      Data Mask Key

      Enter the data masking encryption key. You need the Data Mask Key to see the original data.

      Data Unmasked Time(0-365 Days)

      Enter the number of days the user assigned to this profile can see all logs without masking.

      The logs are masked if the time period in the Log View toolbar is greater than the number of days in the Data Masked Time field.

      Note
      • Only integers between 0-365 are supported.
      • Time frame masking does not apply to real time logs.
      • Time frame masking applies to custom view and drill-down data.
    4. Click OK to create the new administrator profile.

    To apply a profile to an administrator:
    1. Go to System Settings > Administrators.
    2. Create a new administrator or edit an existing administrator. The Edit Administrator pane is displayed.
    3. From the Admin Profile list, select a profile.
    Previous
    Next