Post

FortiManager

Posted
By Sena Perdiana 2 min read

FortiManager is a centralized management platform for Fortinet devices that allows administrators to configure, deploy, and monitor security policies across multiple FortiGate firewalls from a single console. It enables policy consistency, bulk changes, version control, and streamlined operations in large or distributed environments.

x


Device Manager

FMG allows us to manage multiple Fortinet devices in a single dashboard, here we have 2 FGTs that’s already been registered

x


Managing these devices include making changes directly to them, here we will make some changes to FGT-11’s Interface and Static Route

x

x


To apply the changes, Hit Install Wizard and select Install Device Settings

x


Here the devices with changed configurations will show up

x

x


Before actually pushing the changes, we can preview the config. Once all is good, we can hit Install

x


And the changes are pushed to the FGT-11

x


CLI Scripts

Scripts allow us to easily and quickly push some CLI configs to the devices, here we add a CLI Script to add static route

x


After that just right click on the script and hit run

x


Then select the target devices

x

x


And the changes are pushed to the devices

x


Provisioning Templates

Provisioning templates are predefined configuration sets used to automatically apply standard settings (such as interfaces, routing, and security profiles) to multiple devices. Before we dive in into the templates, we will create some Metada Variables

x


Then we can assign specific values for each device’s variables

x


Next we will create a System Template where we configure the Port2 & Port3

x


We also add Static Route Template

x


And some CLI conifgurations as well using CLI Template

x


After that we can create a Template Group where we group all the created templates

x


Then we assign the Template Group to the devices

x

x


Next we can push it by selecting Install Device Settings

x

x

x


And just like that we just deployed a unified configuration across multiple devices

x

x


Policy Packages

A policy package is a collection of firewall policies and related objects that are deployed together to one or more FortiGate devices. Here we will create new Policy Package

x


After that we can create a policy rule with some firewall objects in it

x


Then we select the devices as installation targets

x


And to push the policy, select Install Policy Package

x

x

x


Same as before, we can preview the to be pushed policy

x


After all’s good, we can proceed with installation

x


And the firewall policies along with the objects created on FMG are pushed to all target devices

x


Security, Fortinet
Fortinet
This post is licensed under CC BY 4.0 by the author.