Connecting To The Security Fabric; Configuring Data Storage On The Fortirecorder - Fortinet FortiRecorder 7.0.0 Administration Manual

7. On the IdP server:
a. Paste the entity ID, SP metadata URL, and ACS URL from FortiRecorder.
b. Select to identify users by their email addresses attribute, and then enter the attribute object identifier (OID)
that authentication requests from FortiRecorder use:
urn:oid:0.9.2342.19200300.100.1.3
c. Optionally, enable and configure multi-factor authentication (MFA).
d. If required, add the FortiRecorder unit's certificate to the list of trusted CAs ("trust store").
(Skip this step if your IdP already trusts the certificate, directly or indirectly, via a CA certificate signing chain.)
8. On FortiRecorder, go to System > Administrator > Administrator . For each administrator or user account that will
use SAML SSO, set
To test SSO, attempt to authenticate on FortiRecorder using one of those accounts, and then access another
service that also uses SSO. If successful, the other service should not prompt you to log in.

Connecting to the Security Fabric

FortiRecorder can connect to an upstream FortiGate root and become an integrated cluster member of the Security
Fabric. This allows FortiRecorder to display network and security information from across your other deployed Fortinet
devices. The Security Fabric protocol with FortiOS 7.0+ also provides communications for other features, such as
REST API connections with other Fortinet devices and
System > Customization > Security Fabric and enable the FortiRecorder to become a Security Fabric member.
Go to
Then the FortiGate that is the root of the Security Fabric can connect to the FortiRecorder appliance.

Configuring data storage on the FortiRecorder

If you need to store video for longer periods of time, you can extend your FortiRecorder appliance's built-in storage.
Configuring local storage
To view the size, disk space usage, and status of the FortiRecorder disk(s) or RAID array, go to
Local Storage .
Initially, your FortiRecorder appliance will store video data on its internal hard disk drive(s). By default, it will continue to
do so, regardless of the video clip's age, until all available disk space is consumed. By storing files locally first, your
FortiRecorder appliance's
needed, nor by transferring them while it records (which is bandwidth-intensive). However you can configure your
FortiRecorder appliance to either
Configuring RAID levels
FortiRecorder-400D model comes with two pre-installed hard drives in its four hard drive bays and supports software
RAID. This means that you can add two more hard drives if required.
FortiRecorder-400F comes with one 4 TB hard drive. You can have one or more RAID arrays in the logical disk. For
example, if you want redundancy you can have 4 TB + 4 TB drives and 8 TB + 8 TB drives, or with no redundancy you
can keep the 4 TB drive and add two 8 TB drives.
FortiRecorder 7.0.0 Administration Guide
Fortinet Inc.
Authentication to Single Sign On .
system resources
are not continuously consumed by transferring video that might not be
delete or move older videos
SSO integration with FortiAuthenticator
to external storage.
.
System > Storage >
73