Created on
‎06-10-2025
10:46 AM
Edited on
‎07-29-2025
05:27 AM
By
Anthony_E
Description | This article outlines how to import the default and custom categories from FortiGate to FortiClient EMS. |
Scope | FortiClient EMS and FortiGate. |
Solution |
FortiGate requirements:
Important: HTTPS access must be permitted by FortiGate to effectively import Web Filter profiles from FortiOS to FortiClient EMS.
In FortiGate:
If the admin account that will be used for the import is configured with a trusted host, add the IP from where the connection attempt will originate. If using EMS Cloud, add the Cloud IP: FortiClient Cloud Portal > -About.
Related document: Allowlisting the FortiClient Cloud IP addresses
Importing Web Filter Profile: Steps to Import a Web Filter Profile from FortiGate to EMS:
In the screen that appears, fill out the following fields:
The FortiGate's configured Web Filter profiles will be listed.
Select the Synchronization Mode and select Import:
The chosen profiles will be imported by EMS and shown in a group called FortiGate named after the source under Endpoint Profiles -> Manage Profiles.
Checking custom category import.
Additionally, custom categories are imported. The URLs added to each custom category, however, will be displayed in the exclusion list with the same configured action rather than in the category list. This is demonstrated in the following example:
Note that the same URL was imported with the deny action, as originally configured in the FortiGate. |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.