Prerequisites for the Illumio and Fortinet Integration
To onboard Fortinet, take the following actions to make sure that logs are properly formatted, aggregated, enriched, and securely transmitted:
You must have a Fortinet account with admin credentials to log into FortiGate or FortiManager to configure the syslog server.
All Fortinet clients must allow logs to be forwarded from the firewall or log server. You must ensure that the necessary network connectivity exists to successfully integrate with the Illumio Syslog Service. To generate and export Common Event Format (CEF) logs from Fortinet to a syslog server, you must configure a log-forwarding profile and a syslog server profile.
Performing all of these tasks makes sure that the Fortinet logs flow into the Illumio Platform in a secure and structured manner so that you can view the log data and create enforcement policies.
Preinstallation Tasks
Before you onboard the Log Exporter, do the following:
Create a certificate signing request using your organization's private key.