Help
Cybersecurity Forum

This forum is for all security enthusiasts to discuss Fortinet's latest & evolving technologies and to connect & network with peers in the cybersecurity hemisphere. Share and learn on a broad range of topics like best practices, use cases, integrations and more. For support specific questions/resources, please visit the Support Forum or the Knowledge Base.

AndrHann
New Contributor III

Created on ‎04-19-2016 05:31 PM

FortiManager security profile error

Hello

I am new to FortiManager and am trying to set up some security filtering on my network policies. I have configured my polices and pushed everything out to the FortiGates but I am now trying to assign some security profiles to the policies and am getting the following error:

firewall/policy/1/ : Attribute 'profile-protocol-options' MUST be set.

It doesn't matter which policy I try and edit, I still get the 'attribute must be set' error. I have tested and can add the security profile to the policy directly on the FortiGate but this obviously needs to be done from the FortiManager.

Has anyone seen this error?

Regards,

Andre

Labels:
442
0 Kudos
5 REPLIES 5
jpforcioli_FTNT
Staff
Staff

Created on ‎04-19-2016 10:06 PM

Hi,

This is because you need to set the "Proxy Options" in your policy, as shown in attached picture.

Could you please let us know your FMG version? (get system status)

Best Regards.

Jean-Pierre FORCIOLI
Preview file
97 KB
440
0 Kudos
AndrHann
New Contributor III
In response to jpforcioli_FTNT

Created on ‎04-20-2016 12:12 PM

Hi and thanks. It was as simple as that apparently. My googling skills let me down in this case so I appreciate your help. By the way, your question about the FMG version v5.4.0-build1019 160217 (GA) platform 200D.

Andre

440
0 Kudos
jpforcioli_FTNT
Staff
Staff
In response to AndrHann

Created on ‎04-24-2016 07:43 PM

Just for your information, we're going to have this additional settings to be set automatically (with default profile).

It will be in FMG 5.4.1.

Thanks having raised this!

Jean-Pierre FORCIOLI
440
0 Kudos
AndrBoru
New Contributor
In response to jpforcioli_FTNT

Created on ‎07-27-2016 09:22 AM

I haven't tested this yet in a 5.4.1 deployment. Can you confirm if this change made it into the release?

-Andrew

440
0 Kudos
AndrHann
New Contributor III
In response to AndrBoru

Created on ‎08-03-2016 02:38 PM

Hi Andrew

I have just tested it now. It looks like if you don't specify a proxy option it automatically chooses the default. No errors anymore.

Thanks,

Andre

440
0 Kudos
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.