Collectors and Analyzers This topic describes how to configure two FortiAnalyzer units as the Analyzer and Collector and make them work together. In the scenario shown in the diagram below, Company A has a remote branch network with a FortiGate unit and a FortiAnalyzer 400E in Collector mode. In its […]
High Availability A FortiAnalyzer high availability (HA) cluster provides the following features: Provide real-time redundancy in case a FortiAnalyzer primary unit fails. If the primary unit fails, another unit in the cluster is selected as the primary unit. See If the primary unit fails on page 254. Synchronize logs and […]
Two-factor authentication To configure two-factor authentication for administrators you will need the following: l FortiAnalyzer l FortiAuthenticator l FortiToken Configuring FortiAuthenticator On the FortiAuthenticator, you must create a local user and a RADIUS client. Before proceeding, ensure you have configured your FortiAuthenticator, created a NAS entry for your FortiAnalyzer, and […]
GUI language The GUI supports multiple languages, including: l English l Simplified Chinese l Spanish l Traditional Chinese l Japanese l Korean By default, the GUI language is set to Auto Detect, which automatically uses the language used by the management computer. If that language is not supported, the GUI […]
Password policy You can enable and configure password policy for the FortiAnalyzer. To configure the password policy: Go to System Settings > Admin > Admin Settings. Click to enable Password Policy. Configure the following settings, then click Apply to apply to password policy. Minimum Length Specify the minimum number of […]
Global administration settings The administration settings page provides options for configuring global settings for administrator access to the FortiAnalyzer device. Settings include: Ports for HTTPS and HTTP administrative access To improve security, you can change the default port configurations for administrative connections to the FortiAnalyzer. When connecting to the FortiAnalyzer […]
SAML admin authentication SAML can be enabled across all Security Fabric devices, enabling smooth movement between devices for the administrator. FortiAnalyzer can play the role of the identity provider (IdP) or the service provider (SP) when an external identity provider is available. Devices configured to the IdP can be accessed […]
Remote authentication server groups Remote authentication server groups can be used to extend wildcard administrator access. Normally, a wildcard administrator can only be created for a single server. If multiple servers of different types are grouped, a wildcard administrator can be applied to all of the servers in the group. […]
