Deployment of IPS using FortiAuthenticator and FortiGate Firewall

This section describes the integration of IPS with FortiAuthenticator and FortiGate firewall. The IPS and Fortinet solution provides functionality for enforcing security policies on a per user and role basis.

 

The authentication process is described below:

1. The user is authenticated on IPS after validating the host check policy to ensure that the endpoints meets the corporate policy.
2. The syslog sessions are exported to FortiAuthenticator.
3. Identity information is parsed from the syslog message and is used to create an IP address to username mapping file within FortiAuthenticator. This information is shared with FortiGate firewall in the form of a FSSO record.
4. The FortiGate firewall maps the user to a specific resource access policy and then provides the required access.