FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
bpriya
Staff
Staff

Description


This article describes how to configure email alerts for security profile, administrative and VPN events.

Solution


From GUI.

Configure a mail service.

By default, it will be using the mail server of fortinet and can be customized by enabling the custom settings.
Go to System -> Advanced.

 
Configure alert email.
Go to Logs & Reports and enable 'Email Alert Settings'.
Enabled required events for alert mail.
 
 
From CLI.
To configure the default email server (notification.fortinet.net)
# config system email-server
    # set server "notification.fortinet.net"
    # set reply-to "admin@fortinet.com" <--- Email address which is used to send emails
# set source-ip 0.0.0.0               <----- This is an important field to set (source IP which is used to send out the email traffic).
    # set port 465
    # set security smtps
# end

To configure a custom email service in the CLI.
# config system email-server
    # set type custom
    # set reply-to "helpdesk@fortinet.com"
    # set server "smtp.office365.com"
    # set port 587
    # set source-ip 0.0.0.0               <----- This is an important field to set (source IP which is used to send out the email traffic).
    # set source-ip6 ::
    # set authenticate enable
    # set validate-server disable
    # set username "example@domain.it"
    # set security starttls
    # set ssl-min-proto-version default
# end
# config alertemail setting
    # set username "test@example.com"
    # set mailto1 "test@example.com"
    # set HA-logs enable
    # set IPsec-errors-logs enable
    # set PPP-errors-logs enable
    # set sslvpn-authentication-errors-logs enable
    # set configuration-changes-logs enable
# end

After the settings are completed, a test email can be triggered to test the settings:

# diagnose log alertmail test

 

If the issue still persists, you can collect the below debug:

 

To collect the debug for email alert :

 

# diag debug reset
# diag debug enable
# diag debug console timestamp enable
# diag debug application alertmail -1

 

Send a test activation mail: 

 

# diagnose log alertmail test

 

Then disable debug :


# diag debug disable
# diag debug reset

 

Save the output either download it via CLI window or use Putty tool to log them, in order to attach the debug logs to the case for TAC review.