Description
This article describes how to register a FortiCloud account.
Scope
FortiGate Cloud is a hosted security management and log retention service for FortiGate.
It provides centralized reporting, traffic analysis, configuration management, and log retention without the need for additional hardware or software.
FortiGate Cloud offers a wide range of features:
- Simplified central management.
- Monitoring and alerting in real-time.
- Customized or pre-configured reporting and analysis tools.
- Maintain important configuration information uniformly.
- Service security.
Solution
To activate the FortiGate Cloud account:
Go to Dashboard -> Status.
In the FortiGate Cloud widget, select the 'Not Activated' and 'Activate' buttons in the 'Status' field.
Then a pop-up will appear where the support.fortinet.com credentials can be entered along with domain (mainly US, Global, EU), and select OK to activate the FortiGate Cloud on FortiGate.
Now, the Dashboard of FortiGate will look similar to the screenshot below:
To enable logging to FortiGate Cloud.
Go to Security Fabric -> Settings or Log & Report -> Log Settings.
Enable 'Cloud Logging'.
Select an upload option: Realtime, Every Minute, or Every 5 Minutes (default).
Select 'Apply'.
Logging into the FortiGate Cloud portal.
Once logging has been configured and registered the account, it is possible to log into the FortiGate Cloud portal and begin viewing the logging results. There are two methods to reach the FortiGate Cloud portal:
If having direct network access to the FortiGate:
Enable 'Cloud Logging'.
Select an upload option: Realtime, Every Minute, or Every 5 Minutes (default).
Select 'Apply'.
Logging into the FortiGate Cloud portal.
Once logging has been configured and registered the account, it is possible to log into the FortiGate Cloud portal and begin viewing the logging results. There are two methods to reach the FortiGate Cloud portal:
If having direct network access to the FortiGate:
- Go to Dashboard -> Status.
- In the FortiGate Cloud widget, in the Status field, select 'Activated' and 'Launch Portal', or, in the Licenses widget, select 'FortiCare Support' and 'Launch Portal'.
If access to the FortiGate’s interface is not granted, visit the FortiGate Cloud website (https://forticloud.com) and log in remotely, using the email and password.
It will ask to confirm the FortiGate Cloud account connected to and then will have the granted access.
After login, a dashboard similar to the one shown below is displayed.
After login, a dashboard similar to the one shown below is displayed.
Cloud sandboxing.
FortiGate Cloud can be used for automated sample tracking, or sandboxing, for files from a FortiGate.
FortiGate Cloud can be used for automated sample tracking, or sandboxing, for files from a FortiGate.
This allows suspicious files to be sent to be inspected without risking network security.
If the file exhibits risky behavior or is found to contain a virus, a new virus signature is created and added to the FortiGuard antivirus signature database.
To configure cloud sandboxing.
Go to Security Fabric -> Settings.
Enable Sandbox Inspection.
Set the FortiSandbox type to FortiSandbox Cloud.
Select the FortiSandbox Cloud region.
Select 'Apply'.
Sandboxing results are shown on the Sandbox tab in the FortiGate Cloud portal.
For more information about FortiGate Cloud, see the FortiGate Cloud documentation.
FortiCloud activation if the appliances are in HA.
There are two ways to register FortiGate appliances to FortiCloud if there are in HA.
Go to Security Fabric -> Settings.
Enable Sandbox Inspection.
Set the FortiSandbox type to FortiSandbox Cloud.
Select the FortiSandbox Cloud region.
Select 'Apply'.
Sandboxing results are shown on the Sandbox tab in the FortiGate Cloud portal.
For more information about FortiGate Cloud, see the FortiGate Cloud documentation.
FortiCloud activation if the appliances are in HA.
There are two ways to register FortiGate appliances to FortiCloud if there are in HA.
It is required that both FortiGate's in HA (a-p) are registered.
The unit has to registered units one by one.
The unit has to registered units one by one.
There are two ways to do this.
- Shut down one appliance at a time and register it to the FortiCloud.
Or - Break the HA cluster to make the units independent, register it, and then reform the cluster.
The steps to disconnect the cluster can be found in the Online Help guide.
For v5.4 Disconnecting a cluster unit from a cluster
- Go to System -> HA, and select the icon 'Disconnect from cluster' of a FortiGate.
- Choose interface and input IP, and select 'OK'.
- Connect to IP input to activate FortiCloud.
- Repeat the above to activate FortiCloud in all FortiGates in the HA.
- FortiGate -> Dashboard > HA Status, select link Configure to reform the HA.
Once the procedure is completed, make sure both appliances are showing up on the FortiCloud portal.
Finally, either turn on both appliances or join the cluster again.
Related documents:
https://docs.fortinet.com/forticloud/admin-guides
Technical Note: How to register and activate a FortiCloud account
