In this article, you will learn how to integrate ForitGate Cloud with SecurityCoach. Once the integration is complete, data provided by FortiGate Cloud will be available for use under the SecurityCoach tab of your KnowBe4 console. This data can be viewed in SecurityCoach reports and used to create real-time coaching campaigns. For general information about SecurityCoach, see our SecurityCoach Product Manual.
Verify User Group Setup in FortiGate Virtual Machine
Before you can configure this integration, you’ll need to verify or add a user group to FortiGate’s Outbound Traffic policy. To do this, follow the steps below.
- Log in to your FortiGate Cloud Virtual Machine console.
- Navigate to Policy & Objects > Firewall Policy.
- Click Outbound traffic.
- On the page that appears, verify that your firewall user group is selected in the Source field. If your group isn’t selected, add them.
- Click OK.
Set Up the Integration in FortiGate Cloud
Follow the steps below to set up this integration in your FortiGate Cloud account.
- Log in to your FortiCloud IAM account.
- From the navigation menu on the left side of the page, select Permission Profiles.
- Click Add New.
- In the New Portal Permission Profile, fill out the Permission Profile Name and Status fields. Then, click Add Portal.
- Select FortiGate Cloud, then click Add.
- In the Permission Profile section, select Read Only for all the permissions.
- In the top-right corner of the page, click Submit.
- From the navigation menu on the left side of the page, select Users.
- Click Add New > API User.
- On the Add API User page, select the permission profile you just created from the Select a Permission Profile drop-down menu. Then, click Next.
- Verify the information is correct, then click Next.
- Click Download Credentials.
- In the Security Check pop-up window, enter a secure password to encrypt your file. Then, click Proceed.
- Open the file you just downloaded, then enter the password you just created.
- The text file will contain an API ID and an API Password. Copy the ID and password and save them to a secure location so that you can easily access them for later steps in the configuration process.
- Log in to your FortiGate Cloud portal.
- On the top-right corner of the page, you’ll see the Region drop-down menu.
- Based on the region in the drop-down menu, use the table below to identify the API domain name. You’ll need to enter this domain name in the next section.
Region Name API Domain Global api.fortigate.forticloud.com
US usapi.fortigate.forticloud.com
EU euapi.fortigate.forticloud.com
Japan jpapi.fortigate.forticloud.com
Set Up the Integration in Your KnowBe4 Console
To register FortiGate Cloud with SecurityCoach in your KnowBe4 console, follow the steps below.
- Log in to your KnowBe4 console and navigate to SecurityCoach > Setup > Security Vendor Integrations.
- Locate the FortiGate Cloud card and click Configure.
- Enter the API Domain, API ID, and API Password that you saved in the previous section of this article.
- Click Connect.