Fortinet Fortigate Connector

overview the fortinet fortigate connector enables automated interactions with fortigate firewall appliances, facilitating advanced network security management fortinet fortigate is a comprehensive cybersecurity solution that provides advanced security through its firewall capabilities this connector enables swimlane turbine users to automate critical security tasks such as creating and managing address objects, address groups, and firewall policies by integrating with fortinet fortigate, users can streamline security configurations, enhance policy enforcement, and rapidly respond to network threats directly within the swimlane platform prerequisites to effectively utilize the fortinet fortigate connector with swimlane turbine, ensure you have the following http bearer token authentication url the endpoint url for the fortigate api api token a valid token to authenticate requests to the fortigate api obtaining an api key step 1 determine your source address the source address is needed to ensure the api token can only be used from trusted hosts this step can be skipped if the trusted host ip address is already known on the fortigate gui, select the status dashboard and locate the administrators widget click your userid > show active administrator sessions make note of the source address for your userid as it will be needed to create the trusted host in step 3 step 2 create an administrator profile on the fortigate gui, select system > admin profiles > create new populate the following fields security fabric, fortiview, user & device, firewall, log & report, network, system, security profile, vpn, wan opt & cache, and wifi & switch click ok step 3 create the rest api admin on the fortigate gui, select system > administrators > create new > rest api admin populate the following fields username, administrator profile, cors, and trusted hosts the trusted host must be specified to ensure that your local host can reach the fortigate for example, to restrict requests to 10 20 100 99, enter 10 20 100 99/32 the trusted host is created from the source address obtained in step 1 click ok and an api token will be generated make note of the api token as it is only shown once and cannot be retrieved click close to complete the creation of the rest api admin filtering addresses, address groups, and group members the following three fields are mandatory key objects will be filtered based on this property name pattern objects will be filtered based on this value filter see the table below for filter options operator description == case insensitive match with pattern != does not match with pattern (case insensitive) =@ pattern found in object value (case insensitive) !@ pattern not found in object value (case insensitive) <= value must be less than or equal to pattern < value must be less than pattern >= value must be greater than or equal to pattern > value must be greater than pattern logical operators logical or separate filters using commas (,) logical and combine multiple filters in the request combining and and or you can mix and and or filters to create more complex queries capabilities the fortinet fortigate connector provides the following capabilities create address create address group create ipv4 firewall policy create policy delete address get addresses get group members update address group this connector was last tested against product version 7