Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • IOT Deployment Guide

    Home FortiNAC-F 7.2.0 IOT Deployment Guide
    7.2.0
    7.6.0
    7.4.0
    7.2.0

    Profiling OT manufacturing devices

    Profiling OT manufacturing devices

    In this section, we will create the profile definitions for manufacturing Operational Technologies (OT) devices. The method in which FortiNAC handles the OT devices is the same as IoT. However, in the OT setup, we will use FortiGuard IOT/OT signatures to ensure device identification. In this use case, we will create the device profiling rule for a Siemens S7-1500 as PLC device that provides control for Oil Pump Jack.

    Note

    Device profiling through FortiGuard method and FortiGuard IoT scans will provide a confidence score for target endpoints (IoT Devices).

    Most IoT devices send unencrypted traffic and use different hardware and operating systems that introduce vulnerabilities that could expose the network to risks since users are not aware of the security implications of their use.

    The confidence value is a parameter we can use to define how trustworthy or secure we can consider a device and create a risk profile on it. It gives an assurance that the device has a certain level of security capabilities and we can rely on it.

    FortiNAC has a confidence range between 0 - 255 where values equal to or greater than 120 are considered as a good rating.

    Profile OT manufacturing devices

    1. In the FortiNAC management interface, go to Users & Hosts and click Device Profiling Rules. Click Add.

    2. In the General tab, configure the following options:

      • Check the Enabled checkbox

      • Name:Programmable Logic Controllers

      • Registration: Automatic

      • Type: Click Add and use “PLC” in the field and click “OK”

      • Role: Click Add and use “PLC” in the field and click OK.

      • Register as: Device in Host View

      • Check Add to Group: Add a new group, use the “PLC Device Group” as group name.

    3. Click on the Methods tab and then follow the steps below:

      1. Check both FortiGuard and Vendor OUI.

      2. On the Vendor OUI tab, click Add.

      3. For the Field option, select Vendor Name.

      4. Add SIEMENS BUILDING TECHNOLOGIES AG” and click OK.

      5. On the FortiGuard tab, check “Match Custom Attributes”.

      6. Click Add and use the attributes below:
      Category: Industry
      Sub-Category: Energy
      Vendor: Siemens
      Model: S7-1500

      7. After filling in the attributes, click OK.

      8. The profile has been defined and you click on OK again.

    To explore more devices and attributes found in the FortiGuard OT database:

    1. Go to https://www.fortiguard.com/services/dds

    2. Search using the MAC Address of your OT/IoT device

    3. All the returned attributes can be used to create a new device profiling.

    Previous
    Next

    Profiling OT manufacturing devices

    Profiling OT manufacturing devices

    In this section, we will create the profile definitions for manufacturing Operational Technologies (OT) devices. The method in which FortiNAC handles the OT devices is the same as IoT. However, in the OT setup, we will use FortiGuard IOT/OT signatures to ensure device identification. In this use case, we will create the device profiling rule for a Siemens S7-1500 as PLC device that provides control for Oil Pump Jack.

    Note

    Device profiling through FortiGuard method and FortiGuard IoT scans will provide a confidence score for target endpoints (IoT Devices).

    Most IoT devices send unencrypted traffic and use different hardware and operating systems that introduce vulnerabilities that could expose the network to risks since users are not aware of the security implications of their use.

    The confidence value is a parameter we can use to define how trustworthy or secure we can consider a device and create a risk profile on it. It gives an assurance that the device has a certain level of security capabilities and we can rely on it.

    FortiNAC has a confidence range between 0 - 255 where values equal to or greater than 120 are considered as a good rating.

    Profile OT manufacturing devices

    1. In the FortiNAC management interface, go to Users & Hosts and click Device Profiling Rules. Click Add.

    2. In the General tab, configure the following options:

      • Check the Enabled checkbox

      • Name:Programmable Logic Controllers

      • Registration: Automatic

      • Type: Click Add and use “PLC” in the field and click “OK”

      • Role: Click Add and use “PLC” in the field and click OK.

      • Register as: Device in Host View

      • Check Add to Group: Add a new group, use the “PLC Device Group” as group name.

    3. Click on the Methods tab and then follow the steps below:

      1. Check both FortiGuard and Vendor OUI.

      2. On the Vendor OUI tab, click Add.

      3. For the Field option, select Vendor Name.

      4. Add SIEMENS BUILDING TECHNOLOGIES AG” and click OK.

      5. On the FortiGuard tab, check “Match Custom Attributes”.

      6. Click Add and use the attributes below:
      Category: Industry
      Sub-Category: Energy
      Vendor: Siemens
      Model: S7-1500

      7. After filling in the attributes, click OK.

      8. The profile has been defined and you click on OK again.

    To explore more devices and attributes found in the FortiGuard OT database:

    1. Go to https://www.fortiguard.com/services/dds

    2. Search using the MAC Address of your OT/IoT device

    3. All the returned attributes can be used to create a new device profiling.

    Previous
    Next