FortiGate Scan Report

by Josef Weiss
April 22, 2014

This report leverages the Tenable FortiGate Best Practices Audit and other plugins to provide security settings and other useful information on FortiGate device configuration to an administrator.

Requirements:

  • root/admin SSH credentials for FortiGate FortiOS device.
  • Plugin ID #70272 (Fortigate FortiOS compliance checks)
  • Audit File for Fortigate (TNS_Fortigate_Best_Practices.audit)
  • FortiOS Dynamic Asset

Security settings included in this audit:

  • Password Policy
  • Malware Detection Configuration
  • Enabled Services
  • Expired/Unexpired License Information
  • Log Threshold Configuration
  • NTP Configuration
  • SNMP Configuration
  • Admin User Listing
  • Patch Update Method
  • Audit and Log Configuration
  • Syslog/Fortianlyzer
  • Authentication
  • LDAP/RADIUS Configuration

The report and its components are available in the SecurityCenter Feed, an app store of dashboards, reports, and assets. The report requirements are:

  • SecurityCenter 4.8.0
  • Nessus 5.2.5
  • Audit File for Fortigate (TNS_Fortigate_Best_Practices.audit)
  • FortiOS Dynamic Asset