Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
hbh
Staff
Staff

Created on ‎11-20-2022 07:09 AM

Article Id 230328

Technical Tip: How to create an admin only for monitoring purpose

Description This article describes how to create an administrator account that never times out and how this can be used to monitor the resource and session.
Scope FortiGate.
Solution

FortiGate provides a holistic view of the overall topology via Security Fabric.

To access the Fabric and Fortiview an admin has to login to the firewall.

 

The login to the firewall introduces a few challenges:

1) Accidental configuration change.

2) Time out due to inactivity while monitoring.

 

Thus, to overcome this issue, the following workaround can be applied:

1) Create a new admin profile with all permissions set to read-only.

2) Enable ‘Never Timeout’ under the read-only profile.

 

hbh_0-1668821886310.png

 

3) Create a new administrator and select the read-only profile created as per step 2.

 

hbh_1-1668821886316.png

 

4) Logout and Login as the new admin.

5) The new admin will only have read access and can monitor the pre-configured dashboard.

 

hbh_2-1668821886333.png
734
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.