| Description |
This article describes how to create a restricted user for EMS to get web filter updates. EMS can be configured with a FortiGate user to get web filter profiles regularly, this can be seen in the following link :
|
| Scope | All FortiGate. |
| Solution |
This is a read operation on security profiles, so the user configured in EMS only needs this access. An admin profile for this access can be configured like below :
And this profile should be chosen in user configuration :
Now, EMS can be configured with this user to pull web filter profiles and updates like the below screenshot:
After configuration, it can be seen that EMS has no issues pulling web filter profiles:
Further testing can be done by updating the web filter profile named 'default'. It can be seen below that EMS got the update successfully:
On FortiGate, successful logon of the user can also be observed:
Result: For EMS to pull web filter profiles from FortiGate, an admin with read rights on security profiles is enough. |
