FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
The FSSO Collector Agent service can be stuck in the 'not running' state even though it was installed with Domain Admin privileges.

On some Windows Servers, other third-party, or Windows applications/services can be using TCP port 8000, which is the default port that the FSSO Collector Agent listens on to communicate with FortiGate devices.  This port conflict can result in the following error message being visible in the FSSO Collector Agent log file:

Failed to bind socket to port 8000
failed to create server socket

To resolve this issue, reconfigure the Windows application/service using TCP port 8000 to another TCP port.   If this is not possible, reconfigure the FSSO Collector Agent's TCP port from 8000 to another unused port number.