Fortinet FortiEDR

Samurai [Local] CollectorSamurai [Cloud] Collector
Picture1.svg

This guide describes the steps required to configure Fortinet FortiEDR for telemetry data ingestion to the Samurai platform.

Follow the steps below:

1. From the FortiEDR Central Manager

2. From the Samurai MDR portal

Create a user with a REST API role

Follow the Fortinet documentation:

When completing the steps use the following parameters:

  • Role: Read-Only
  • Advanced: Rest API (checked)
  • Two Factor Authentication: Ensure MFA is Disabled

Additional information required

You will also need to provide additional information to complete the integration. This includes:

  • Deployment URL: This is the URL utilized to access the FortiEDR Central Manager.
  • Organization: This is the Organization name used when logging into the FortiEDR Central Manager

Complete the Fortinet FortiEDR Integration

  1. Login to the Samurai MDR portal
  2. Click Telemetry and select Integrations from the main menu
  3. Select Create
  4. Locate and click Fortinet FortiEDR 
  5. Click Next (we leverage a Samurai Cloud Collector)
  6. Enter a Name of Integration
  7. Enter a Description (Optional)
  8. Enter your Deployment URL
  9. Enter your Organization
  10. Enter your Username
  11. Enter your Password
  12. Click Finish

Our Integration guide was accurate at the time of writing but vendors change things frequently! If you find errors or anything is outdated, let us know by raising a request in the Samurai MDR application and we shall get it updated.