Fortinet white logo
Fortinet white logo
7.4.0

Administrative settings

Administrative settings

The following general administrative settings are recommended:

  • Set the idle timeout time for administrators to a low value, preferably less that ten minutes.

  • Use non-standard HTTPS and SSH ports for administrative access.

  • Disable weak encryption protocols.

  • Replace the certificate that is offered for HTTPS access with a trusted certificate that has the FQDN or IP address of the FortiProxy.

  • Configure the Fortinet Security Fabric when multiple FortiProxys and fabric devices are used. It provides a single-pane-of-glass administration, allowing administrators access to each device in the fabric using SSO.

    A Fortinet Security Fabric includes a root FortiProxy, downstream devices, and other Fortinet fabric devices. A maximum of 35 downstream FortiProxys is recommended.

Administrative settings

Administrative settings

The following general administrative settings are recommended:

  • Set the idle timeout time for administrators to a low value, preferably less that ten minutes.

  • Use non-standard HTTPS and SSH ports for administrative access.

  • Disable weak encryption protocols.

  • Replace the certificate that is offered for HTTPS access with a trusted certificate that has the FQDN or IP address of the FortiProxy.

  • Configure the Fortinet Security Fabric when multiple FortiProxys and fabric devices are used. It provides a single-pane-of-glass administration, allowing administrators access to each device in the fabric using SSO.

    A Fortinet Security Fabric includes a root FortiProxy, downstream devices, and other Fortinet fabric devices. A maximum of 35 downstream FortiProxys is recommended.