Fortinet
More complete device data can now be fetched from Fortinet Management Station (FortiManager) and ingested into Asset Manager as full-fledged devices. This integration functions like other scan types: results are ingested, then either merged into existing devices or added as new ones.
-
Configure the FortiManager integration in Asset Manager.
-
The Asset Manager system calls the FortiManager API and processes its responses.
-
Asset Manager synthesizes the responses and then either creates or updates a device in Asset Manager.
|
If the device... |
Then |
And... |
|---|---|---|
| Does not exist on Asset Manager | Asset Manager records the response with scan type "integration" and adds the device to the Asset Manager database. | Adds the attribute "externalSource" with the value "FortiManager" Device becomes eligible to become a discovery target and follows the same algorithm as though it were any device discovered in Asset Manager. |
| Already exists on Asset Manager | Asset Manager retains the device. The response entry on Asset Manager includes the Asset Manager scan type (e.g., Host Discovery) and "integration" for the scan type. Asset Manager Device Details shows both Host and External as the discovery scan type. | Adds the attribute "externalSource" with the value "FortiManager" Device becomes eligible to become a discovery target and follows the same algorithm as though it were any device discovered in Asset Manager. |
The responses from FortiManager are used to enhance the interface information displayed in Asset Manager Device Details, including:
-
Devices—FortiSwitch and FortiGate devices
-
Interface—Including port information
-
Fortinet inflected device fingerprints, identification, and confidence-rankings
-
Fortinet sourced devices can be added to Asset Manager Target List and Asset Manager Eligible List
Fortinet splits physical devices into “Virtual Domains” (VDOMs). We treat each VDOM we see as its own device as they each have their own interface table and routing information. We give all these VDOMs associated with a physical chassis the same serial number. We give each device created an Identity in the form of <Fortinet Device Name>.<VDOM name>
Configure the integration as follows:
-
In Asset Manager, go to Settings > Integrations > Fortinet, and then click Configure.
-
Turn on the Enabled toggle to activate the integration.
-
Enter a Polling Interval (by Hour) to indicate the time that should elapse between fetching the latest feed data. Input 24 to poll daily, input 12 to poll twice a day, and so on.
-
Enter the Server Name, User Name and Password for server in the appropriate fields.
-
Select the Pull checkbox for the Zones you want to bring data from FortiNet into Asset Manager.
-
Click Test to confirm that the feed is configured correctly.
-
Click Save.