FortiPAM

Question

Hi everyone,

we are currently exploring FortiPAM for use in a SOC environment and would appreciate any insights or recommendations from those with experience.

Here are a few key questions w have :

What are the best practices for integrating FortiPAM with third-party devices (firewalls, servers, etc.)?

Is it possible to manage RDP/SSH sessions directly through FortiPAM without using FortiAuthenticator?

Any real-world feedback on the scalability and performance of FortiPAM in high-volume environments?

Are there any limitations or pitfalls to watch out for during the initial deployment phase ?

Thanks in advance for your help !

kcheng · Answer

Hi @Saidb

I believe I could only provide partial information based on your queries:

1. There are already templates ready to be used for integrating FortiPAM to third-party devices.

2. Yes, you can manage RDP/SSH sessions directly through FortiPAM without using FortiAuthenticator. The login credentials can be local or based on the source that you configured in the secret. You can monitor the activities performed and terminate the connection via FortiPAM.

Docs to refer:

https://docs.fortinet.com/document/fortipam/1.6.0/administration-guide/869575/fortipam-concepts

https://docs.fortinet.com/document/fortipam/1.6.0/administration-guide/413004/fortipam-deployment-options

https://docs.fortinet.com/document/fortipam/1.6.0/administration-guide/290254/feature-availability

https://docs.fortinet.com/document/fortipam/1.6.0/administration-guide/549807/creating-a-secret

https://docs.fortinet.com/document/fortipam/1.6.0/administration-guide/580621/viewing-secret-activity

https://docs.fortinet.com/document/fortipam/1.6.0/administration-guide/170626/over-the-shoulder-monitoring-live-recording