Detections
Analytics

CIS Fortigate Level 2 v1.0.0

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS Fortigate Level 2 v1.0.0

Updated: 6/27/2023

Authority: CIS

Plugin: FortiGate

Revision: 1.3

Estimated Item Count: 28

Audit Items

DescriptionCategories
2.1.6 Ensure the latest firmware is installed
2.1.7 Disable USB Firmware and configuration installation - auto-install-config
2.1.7 Disable USB Firmware and configuration installation - auto-install-image
2.1.8 Disable static keys for TLS
2.1.9 Enable Global Strong Encryption
2.3.2 Ensure only SNMPv3 is enabled - snmpv1/snmpv2c communities don't exist
2.3.2 Ensure only SNMPv3 is enabled - snmpv3 user exist
2.5.1 Ensure High Availability Configuration
2.5.3 Ensure HA Reserved Management Interface is Configured
3.1 Ensure that unused policies are reviewed regularly

CONFIGURATION MANAGEMENT

3.3 Ensure Policies are Uniquely Named

CONFIGURATION MANAGEMENT

3.4 Ensure there are no Unused Policies

CONFIGURATION MANAGEMENT

4.1.1 Detect Botnet Connections

CONFIGURATION MANAGEMENT

4.2.1 Ensure Antivirus Definition Push Updates are Configured
4.2.2 Apply Antivirus Security Profile to Policies

CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY

4.3.1 Enable Botnet C&C Domain Blocking DNS Filter

CONFIGURATION MANAGEMENT

5.2.1.1 Ensure Security Fabric is Configured

CONFIGURATION MANAGEMENT

6.1.1 Apply a Trusted Signed Certificate for VPN Portal

IDENTIFICATION AND AUTHENTICATION

6.1.2 Enable Limited TLS Versions for SSL VPN - algorithm
6.1.2 Enable Limited TLS Versions for SSL VPN - banned-cipher
6.1.2 Enable Limited TLS Versions for SSL VPN - ssl-max-prot-ver
6.1.2 Enable Limited TLS Versions for SSL VPN - ssl-max-proto-ver
6.1.2 Enable Limited TLS Versions for SSL VPN - ssl-min-proto-ver
7.1 Configuring the maximum login attempts and lockout period - auth-lockout-duration
7.1 Configuring the maximum login attempts and lockout period - auth-lockout-threshold
8.1.1 Enable Event Logging
8.2.1 Encrypt Log Transmission to FortiAnalyzer / FortiManager
8.3.1 Centralized Logging and Reporting

AUDIT AND ACCOUNTABILITY