This is the multi-page printable view of this section. Click here to print.

Return to the regular view of this page.

Fortinet FortiEDR

    Samurai [Local] CollectorSamurai [Cloud] Collector
    Picture1.svg

    This guide describes the steps required to configure Fortinet FortiEDR for telemetry data ingestion to the Samurai platform.

    Follow the steps below:

    1. From the FortiEDR Central Manager

    2. From the Samurai MDR portal

    Create a user with a REST API role

    Follow the Fortinet documentation:

    When completing the steps use the following parameters:

    • Role: Read-Only
    • Advanced: Rest API (checked)
    • Two Factor Authentication: Ensure MFA is Disabled

    Additional information required

    You will also need to provide additional information to complete the integration. This includes:

    • Deployment URL: This is the URL utilized to access the FortiEDR Central Manager.
    • Organization: This is the Organization name used when logging into the FortiEDR Central Manager

    Complete the Fortinet FortiEDR Integration

    1. Login to the Samurai MDR portal
    2. Click Telemetry and select Integrations from the main menu
    3. Select Create
    4. Locate and click Fortinet FortiEDR 
    5. Click Next (we leverage a Samurai Cloud Collector)
    6. Enter a Name of Integration
    7. Enter a Description (Optional)
    8. Enter your Deployment URL
    9. Enter your Organization
    10. Enter your Username
    11. Enter your Password
    12. Click Finish

    Our Integration guide was accurate at the time of writing but vendors change things frequently! If you find errors or anything is outdated, let us know by raising a request in the Samurai MDR application and we shall get it updated.