Technical Tip: Security rating not showing under the Security Fabric

Description

This article discusses the security rating option, which does not appear under the Security Fabric for some units.

Scope

FortiGate.

Solution

Run a Security Fabric rating to analyze the organization's Security Fabric deployment, identify potential vulnerabilities, and highlight best practices that can be used to improve the overall security and performance of the organization's network.

The Security Fabric rating performs a variety of checks when it analyzes the network.
All checks are based on the current network configuration, using real-time monitoring.
The check runs across all FortiGate units in the Security Fabric.

However, sometimes the security rating option is not available under the Security Fabric.
This is because not all FortiGate models can support running the FortiGuard security rating service as a Fabric 'root' unit.
These FortiGate platforms can run the FortiGuard security rating service when added to an existing Fortinet Security Fabric managed by a supported FortiGate model.

Check the release notes of the firmware to see the list of units that cannot act as Fabric root units under the FortiGuard security rating service.

Note: Starting from FortiOS v7.6.2, physical FortiGate devices with 2GB of RAM no longer support Security Rating. For more information, refer to the release note: 2 GB RAM FortiGate models no longer support Security Rating and Security Fabric topology.