Fortinet black logo

Universal Connector 1.0.0 Administration Guide

Home FortiManager 7.0.1 Universal Connector 1.0.0 Administration Guide
7.0.1
7.4.0
7.2.0
7.0.1

Selecting labels in policies and objects

Selecting labels in policies and objects

In FortiManager, the imported labels are available in the Policy & Objects module as FSSO adgrp, and you can select them in the following locations:

  • Address objects
  • User group objects
  • Firewall policies

This topic describes how to select the labels in each location.

Note

Before you can select labels, ensure that you have imported them from Universal Connector MEA. See Enabling Universal Connector MEA in Policy & Objects

The naming convention for Labels is uc_ + Universal Connector ID_ + tag/group/label. If you have multiple Universal Connector MEA configured on FortiManager, you can distinguish between them at the time of label selection by their respective IDs.

To select labels in address objects:
  1. Go to Policy & Objects > Object Configurations > Firewall Objects > Addresses.
  2. In the toolbar, click Create New > Address. The Create New Address pane is displayed.
  3. Set the following options:

    Name

    Type a name for the address object.

    TypeSelect Dynamic.
    Sub TypeSelect FSSO.
    FSSO GroupClick Click here to select, and select the labels imported from Guardicore Centra.

    Change Note

    Type a note about the change you are making.

  4. Set the remaining options as desired, and click OK.

    The dynamic address object is created.

To select labels in user group objects:
  1. Go to Policy & Objects > Object Configurations > User & Authentication > User Groups.
  2. In the toolbar, click Create New . The Create New User Group pane is displayed.
  3. Set the following options:

    Group Name

    Type a name for the user group.

    TypeSelect FSSO/SSO Connectors.
    MembersClick Click here to select, and select the labels imported from Guardicore Centra.

    Change Note

    Type a note about the change you are making.

  4. Set the remaining options as desired, and click OK.

    The dynamic address object is created.

To select labels in firewall policies:
  1. Go to Policy & Objects > Policy Packages.
  2. In the tree menu, create a new policy package, or expand an existing policy package, and select Firewall Policy.
  3. In the toolbar, click Create New . The Create New Firewall Policy pane is displayed.
  4. Set the following options:

    Name

    Type a name for the firewall policy.

    FSSO GroupsClick +, and select labels imported from Guardicore.

    Change Note

    Type a note about the change you are making.

  5. Set the remaining options as desired, and click OK.

    The firewall policy is created, and it uses dynamic address objects.

Previous
Next

Selecting labels in policies and objects

In FortiManager, the imported labels are available in the Policy & Objects module as FSSO adgrp, and you can select them in the following locations:

  • Address objects
  • User group objects
  • Firewall policies

This topic describes how to select the labels in each location.

Note

Before you can select labels, ensure that you have imported them from Universal Connector MEA. See Enabling Universal Connector MEA in Policy & Objects

The naming convention for Labels is uc_ + Universal Connector ID_ + tag/group/label. If you have multiple Universal Connector MEA configured on FortiManager, you can distinguish between them at the time of label selection by their respective IDs.

To select labels in address objects:
  1. Go to Policy & Objects > Object Configurations > Firewall Objects > Addresses.
  2. In the toolbar, click Create New > Address. The Create New Address pane is displayed.
  3. Set the following options:

    Name

    Type a name for the address object.

    TypeSelect Dynamic.
    Sub TypeSelect FSSO.
    FSSO GroupClick Click here to select, and select the labels imported from Guardicore Centra.

    Change Note

    Type a note about the change you are making.

  4. Set the remaining options as desired, and click OK.

    The dynamic address object is created.

To select labels in user group objects:
  1. Go to Policy & Objects > Object Configurations > User & Authentication > User Groups.
  2. In the toolbar, click Create New . The Create New User Group pane is displayed.
  3. Set the following options:

    Group Name

    Type a name for the user group.

    TypeSelect FSSO/SSO Connectors.
    MembersClick Click here to select, and select the labels imported from Guardicore Centra.

    Change Note

    Type a note about the change you are making.

  4. Set the remaining options as desired, and click OK.

    The dynamic address object is created.

To select labels in firewall policies:
  1. Go to Policy & Objects > Policy Packages.
  2. In the tree menu, create a new policy package, or expand an existing policy package, and select Firewall Policy.
  3. In the toolbar, click Create New . The Create New Firewall Policy pane is displayed.
  4. Set the following options:

    Name

    Type a name for the firewall policy.

    FSSO GroupsClick +, and select labels imported from Guardicore.

    Change Note

    Type a note about the change you are making.

  5. Set the remaining options as desired, and click OK.

    The firewall policy is created, and it uses dynamic address objects.

Previous
Next