Task 1 - Create Automation Trigger

This task creates the trigger for when an Admin logs in or out or fails to login.

  1. Login to the FortiGate using the IP address and credentials from the Terraform output.
  2. Click through any opening screens for FortiGate setup actions, no changes are required.
  3. Click “Security Fabric”
  4. Click “Automation”
  5. Click “Trigger”
  6. Click “Create New”

stitchtask1 stitchtask1 stitchtask1 stitchtask1

  1. Click “FortiOS Event Log” in Miscellaneous section
  2. Enter
    • Name: Admin activity trigger
  3. Click “+” in Event field
  4. Enter search term “Admin Log” in “Select Entries”
  5. Click these entries to add to the Event field
    • Admin Login failed
    • Admin Login successful
    • Admin Logout successful
  6. Click Close
  7. Click OK

stitchtask1 stitchtask1 stitchtask1 stitchtask1 stitchtask1 stitchtask1