Technical Tip: Account was not configured with high security level

naveenk · ‎05-14-2020

Description
This article discusses about FortiGates in Forticloud account are not configured with high security level to send log to our log server.

Solution
In case of any email received from FortiCloud admin stating.
Find the following unit(s) in the account not configured with high security level to send log to the log server.

Note.
Connection will be dropped from FortiGate which is not configured with high security level after 10 days.

Use the below commands to enable the same:

# config log fortiguard setting
set enc-algorithm high
end

The command will only work when the FortiCloud is activated on FortiGate and logs to Forticloud have been sent.
Also under fortiGuard setting status is enabled:

# config log fortiguard setting
set status enable
set enc-algorithm high
end

Below are the complete settings that are performed.
These settings are only available if an active FortiCloud subscription is associated with the unit.

# config log fortiguard setting
    set status {enable | disable}                                                <----- Enable/disable logging to FortiCloud.
    set upload-option {store-and-upload | realtime | 1-minute | 5-minute}        <----- Configure how log messages are sent to FortiCloud.
            store-and-upload                                                     <----- Log to the hard disk and then upload logs to FortiCloud.
            realtime                                                             <----- Log directly to FortiCloud in real time.
            1-minute                                                             <----- Log directly to FortiCloud at 1-minute intervals.
            5-minute                                                             <----- Log directly to FortiCloud at 5-minute intervals.
    set upload-interval {daily | weekly | monthly}                               <----- Frequency of uploading log files to FortiCloud.
            daily                                                                <----- Upload log files to FortiCloud once a day.
            weekly                                                               <----- Upload log files to FortiCloud once a week.
            monthly                                                              <----- Upload log files to FortiCloud once a month.
    set upload-day {string}                                                      <----- Day of week to roll logs.
    set upload-time {string}                                                     <----- Time of day to roll logs (hh:mm).
    set enc-algorithm {high-medium | high | low | disable}                       <----- Enable/disable and set the SSL security level for for sending encrypted logs to FortiCloud.
            high-medium                                                          <----- Encrypt logs using high and medium encryption.
            high                                                                 <----- Encrypt logs using high encryption.
            low                                                                  <----- Encrypt logs using low encryption.
            disable                                                              <----- Disable SSL encryption.
    set source-ip {ipv4 address}                                                 <----- Source IP address used to connect FortiCloud.
end