Detections
Analytics

CIS Fortigate 7.0.x v1.3.0 L2

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS Fortigate 7.0.x v1.3.0 L2

Updated: 2/23/2026

Authority: CIS

Plugin: FortiGate

Revision: 1.3

Estimated Item Count: 22

File Details

Filename: CIS_Fortigate_7.0.x_v1.3.0_L2.audit

Size: 37.1 kB

MD5: ad77cff33846fc8acb1b2c0f9a661f87
SHA256: beef9b7908b464e3f37dbef46c535e7b9340cf1c56557eddc8bed82812657091

Audit Items

DescriptionCategories
2.1.6 Ensure the latest firmware is installed
2.1.7 Disable USB Firmware and configuration installation
2.1.8 Disable static keys for TLS
2.1.9 Enable Global Strong Encryption
2.1.11 Ensure CDN is enabled for improved GUI performance
2.3.1 Ensure only SNMPv3 is enabled
2.3.2 Allow only trusted hosts in SNMPv3
2.5.1 Ensure High Availability configuration is enabled
3.1 Ensure that unused policies are reviewed regularly
4.1.1 Detect Botnet connections
4.2.1 Ensure Antivirus Definition Push Updates are Configured
4.2.2 Apply Antivirus Security Profile to Policies
4.2.3 Enable Outbreak Prevention Database
4.2.4 Enable AI /heuristic based malware detection
4.2.5 Enable grayware detection on antivirus
4.3.1 Enable Botnet C&C Domain Blocking DNS Filter
4.4.2 Block applications running on non-default ports
5.2.1.1 Ensure Security Fabric is Configured
6.1.1 Apply a Trusted Signed Certificate for VPN Portal
6.1.2 Enable Limited TLS Versions for SSL VPN
7.1.1 Enable Event Logging
7.3.1 Centralized Logging and Reporting