Table of Contents
Advertisement
Quick Links
Advertisement
Table of Contents
Subscribe to Our Youtube Channel
Related Manuals for Fortinet FortiSIEM 2000G
Summary of Contents for Fortinet FortiSIEM 2000G
- Page 1 2000G Hardware Configuration Guide FortiSIEM 6.6.2...
- Page 2 FORTINET DOCUMENT LIBRARY https://docs.fortinet.com FORTINET VIDEO GUIDE https://video.fortinet.com FORTINET BLOG https://blog.fortinet.com CUSTOMER SERVICE & SUPPORT https://support.fortinet.com FORTINET TRAINING & CERTIFICATION PROGRAM https://www.fortinet.com/training-certification NSE INSTITUTE https://training.fortinet.com FORTIGUARD CENTER https://www.fortiguard.com END USER LICENSE AGREEMENT https://www.fortinet.com/doc/legal/EULA.pdf FEEDBACK techdoc@fortinet.com Email: 09/19/2022 FortiSIEM 6.6.2 2000G Hardware Configuration Guide...
-
Page 3: Table Of Contents
Step 8: Choose an Event Database Cluster Installation Installing the Supervisor Installing Workers Registering Workers Installing Collectors Installing Manager Registering Instances to Manager Registering Collectors Factory Reset Step 1: Uninstall FortiSIEM Application Step 2: Reinstall FortiSIEM Application FortiSIEM 6.6.2 2000G Hardware Configuration Guide Fortinet Inc. -
Page 4: Change Log
Change Log Change Log Date Description 10/11/2021 Initial release of this guide. FortiSIEM 6.6.2 2000G Hardware Configuration Guide Fortinet Inc. -
Page 5: Appliance Setup
Step 7: Accessing FortiSIEM UI Step 8: Choose an Event Database Step 1: Rack Mount the FSM-2000G Appliance 1. Follow FortiSIEM 2000G QuickStart Guide located here to mount FSM-2000G into the rack. 2. Insert solid state drive disks (SDD) and hard drive disks (HDD) into the positions as shown below: Connect FSM-2000G to the network by connecting an Ethernet cable to Port 0. -
Page 6: Step 2: Power On The Fsm-2000G Appliance
Number Label Port Numbering port1 port0 port2 port1 port3 port2 port4 port3 port5 port5 port6 port4 Step 4: Configure FortiSIEM via GUI Follow these steps to configure FortiSIEM by using a simple GUI. FortiSIEM 6.6.2 2000G Hardware Configuration Guide Fortinet Inc. - Page 7 2 Worker , and press Next . If installing a Worker, select 3 Collector , and press Next . If installing a Collector, select 4 FortiSIEM Manager , and press Next . If Installing FortiSIEM Manager, select FortiSIEM 6.6.2 2000G Hardware Configuration Guide Fortinet Inc.
- Page 8 FIPS (option Note : After Installation, a 5th option to change your network configuration ( 5 change_network_config ) is available. This allows you to change your network settings and/or host name. FortiSIEM 6.6.2 2000G Hardware Configuration Guide Fortinet Inc.
- Page 9 12. If you chose 1 in step 9, then you will need to skip to step 13. If you chose 2 or 3 in step 9, then you will configure Next . the IPv6 network by entering the following fields, then press FortiSIEM 6.6.2 2000G Hardware Configuration Guide Fortinet Inc.
- Page 10 IPv6 DNS server, then you can use public IPv6 DNS servers or use IPv4- mapped IPv6 address. 13. Configure Hostname for FortiSIEM Manager/Supervisor/Worker/Collector. Press Next . Note : FQDN is no longer needed. FortiSIEM 6.6.2 2000G Hardware Configuration Guide Fortinet Inc.
- Page 11 Note : By default, “google.com” is shown for the connectivity test, but if configuring IPv6, you must enter an accessible internally approved IPv6 DNS server, for example: “ipv6-dns.fortinet.com" Note : When configuring both IPv4 and IPv6, only testing connectivity for the IPv6 DNS is required because the IPV6 takes higher precedence.
- Page 12 FortiSIEM installation. After installation completes, ensure that the phMonitor is up and running, for example: # phstatus For the Supervisor, Worker and Collector, the response should be similar to the following. FortiSIEM 6.6.2 2000G Hardware Configuration Guide Fortinet Inc.
-
Page 13: Step 5: Generate Fortisiem Fsm-2000G License Key File From Forticare
Note : The FortiSIEM Manager license allows a certain number of instances that can be registered to FortiSIEM Manager. License Type Enterprise for single organizations Service Provider for multiple organizations 4. Click Upload to complete the license registration. FortiSIEM 6.6.2 2000G Hardware Configuration Guide Fortinet Inc. -
Page 14: Step 7: Accessing Fortisiem Ui
For larger installations, you can choose Worker nodes and external storage (NFS, ClickHouse, or Elasticsearch). Installing the Supervisor Installing Workers Registering Workers Installing Collectors Registering Collectors Installing Manager Registering Instances to Manager Installing the Supervisor All-in-one Installation Follow the steps in with two differences: FortiSIEM 6.6.2 2000G Hardware Configuration Guide Fortinet Inc. - Page 15 Appliance Setup Setting up hardware - you do not need an event database. Setting up an Event database - Configure the cluster for NFS, ClickHouse, or Elasticsearch. ClickHouse Elasticsearch FortiSIEM 6.6.2 2000G Hardware Configuration Guide Fortinet Inc.
-
Page 16: Installing Workers
Worker except that you 2 Worker during Step 4: Configure FortiSIEM via GUI substep 7 choose Registering Workers Once the Worker is up and running, add the Worker to the Supervisor node. FortiSIEM 6.6.2 2000G Hardware Configuration Guide Fortinet Inc. -
Page 17: Installing Collectors
Once Supervisor and Workers are installed, follow the same steps in to install a Collector except only choose OS and OPT disks. The recommended settings for Collector node are: CPU = 4 Memory = 8GB FortiSIEM 6.6.2 2000G Hardware Configuration Guide Fortinet Inc. -
Page 18: Installing Manager
6. In the Admin Password field, enter the Password that will be associated with the Admin User account. 7. In the Confirm Admin Password field, re-enter the Password. 8. (Optional) In the Description field, enter any information you wish to provide about the instance. FortiSIEM 6.6.2 2000G Hardware Configuration Guide Fortinet Inc. - Page 19 In the Confirm Password field, re-enter your password. f. Click Test to verify the configuration. g. Click Register . A dialog box displaying "Registered successfully" should appear if everything is valid. FortiSIEM 6.6.2 2000G Hardware Configuration Guide Fortinet Inc.
-
Page 20: Registering Collectors
Set Super IP or Host as the Supervisor's IP address. c. Set Organization . For Enterprise deployments, the default name is Super. d. Set CollectorName from Step 2a The Collector will reboot during the Registration. FortiSIEM 6.6.2 2000G Hardware Configuration Guide Fortinet Inc. - Page 21 Note : Rather than using IP addresses, a DNS name is recommended. The reasoning is, should the IP addressing change, it becomes a matter of updating the DNS rather than modifying the Event Worker IP addresses in FortiSIEM. b. Click OK . FortiSIEM 6.6.2 2000G Hardware Configuration Guide Fortinet Inc.
- Page 22 Set Super IP or Host as the Supervisor's IP address. c. Set Organization as the name of an organization created on the Super. d. Set CollectorName from Step 6 The Collector will reboot during the Registration. FortiSIEM 6.6.2 2000G Hardware Configuration Guide Fortinet Inc.
- Page 23 Appliance Setup 8. Go to ADMIN > Health > Collector Health and check the status. FortiSIEM 6.6.2 2000G Hardware Configuration Guide Fortinet Inc.
-
Page 24: Factory Reset
This script takes a few minutes to complete FortiSIEM installation. 5. Reboot and run /user/local/bin/configFSM.sh to install FortiSIEM. Follow the steps under Appliance Setup to configure FSM-2000G. FortiSIEM 6.6.2 2000G Hardware Configuration Guide Fortinet Inc. - Page 25 Counsel, with a purchaser that expressly warrants that the identified product will perform according to certain expressly-identified performance metrics and, in such event, only the specific performance metrics expressly identified in such binding written contract shall be binding on Fortinet. For absolute clarity, any such warranty will be limited to performance in the same ideal conditions as in Fortinet’s internal lab tests.
Need help?
Do you have a question about the FortiSIEM 2000G and is the answer not in the manual?
Questions and answers