TroubleshootingTip: Permission is required to use FortiEDR Connect functionality

FortiEDR Connect is a feature that allows the FortiEDR administrator to access Windows devices and execute command line-related commands.

This feature is useful when a FortiEDR administrator would like to perform further investigation without physically attending to the device.

Below are the items to check if the FortiEDR Connect feature (Connect to Device) option is greyed out and hovering the cursor to it presents the message 'Permission is required to use FortiEDR Connect functionality':

1. In the FortiEDR console, go to Administration -> Tools -> FortiEDR Connect -> Select checkbox 'Allow FortiEDR Connect - Remote Shell Connection'.

2. The remote shell connection permission is set individually in the FortiEDR admin account. To verify, go to Administration -> Users -> Edit user -> under Advanced option, make sure to select 'Establish FortiEDR Connect sessions'.

The checkbox 'Establish FortiEDR Connection sessions' will only be available as an option when the FortiEDR user is assigned with role Admin, Senior Analyst, and Analyst only.
Users assigned with role IT and Read-Only will not be able to select the checkbox 'Establish FortiEDR Connection sessions'.