Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
sselvam
Staff
Staff

Created on ‎05-19-2020 07:54 AM Edited on ‎10-15-2025 09:36 PM By Community Manager

Article Id 195056

Technical Tip: How to register and activate a FortiGate Cloud account

Description

 

This article describes how to register a FortiGate Cloud account.

Scope

 

FortiGate Cloud is a hosted security management and log retention service for FortiGate. It provides centralized reporting, traffic analysis, configuration management, and log retention without the need for additional hardware or software.

FortiGate Cloud offers a wide range of features:

  1.  Simplified central management.
  2.  Monitoring and alerting in real-time.
  3.  Customized or pre-configured reporting and analysis tools.
  4.  Maintain important configuration information uniformly.
  5.  Service security.

 

Solution

 

To activate the FortiGate Cloud account:

In FortiGate GUI. Go to Dashboard -> Status.

 
In the FortiGate Cloud widget, select the 'Not Activated' and 'Activate' buttons in the 'Status' field.
  
login forticloud.PNG

 

Then a pop-up will appear where the support.fortinet.com credentials can be entered along with the domain (mainly US, Global, EU), and select OK to activate the FortiGate Cloud on FortiGate.
 
Activate via CLI:
 
Run the following command:
 
execute fortiguard-log login <email> <password> <domain>
 
If no domain is specified, the unit will join the Global FortiGate Cloud region. To get the domain list run the following command:
 
execute fortiguard-log domain
 
The Dashboard of FortiGate will look similar to the screenshot below:
 
activated.PNG

 

To enable logging to FortiGate Cloud.
  • Go to Security Fabric -> Settings or Log & Report -> Log Settings.
  • Enable 'Cloud Logging'.
  • Select an upload option: Realtime, Every Minute, or Every 5 Minutes (default).
  • Select 'Apply'.

To enable FortiGate Cloud logging from CLI:

config log fortiguard setting
set status enable
end
 
Logging into the FortiGate Cloud portal.
Once logging has been configured and the account registered, it is possible to log into the FortiGate Cloud portal and begin viewing the logging results. There are two methods to reach the FortiGate Cloud portal:
If having direct network access to the FortiGate:
  • Go to Dashboard -> Status.
  •  In the FortiGate Cloud widget, in the Status field, select 'Activated' and 'Launch Portal', or, in the Licenses widget, select 'FortiCare Support' and 'Launch Portal'.

If access to the FortiGate’s interface is not granted, visit the FortiGate Cloud website (https://forticloud.com) and log in remotely, using the email and password.
It will ask to confirm the FortiGate Cloud account connected to, and will have the granted access.
After login, a dashboard similar to the one shown below is displayed.
 

Forticloud new portal.png

 

 
Cloud sandboxing.
FortiGate Cloud can be used for automated sample tracking or sandboxing, for files from a FortiGate.
This allows suspicious files to be sent for inspection without risking network security.
If the file exhibits risky behaviour or is found to contain a virus, a new virus signature is created and added to the FortiGuard antivirus signature database.
 
To configure cloud sandboxing.
  • Go to Security Fabric -> Settings.
  • Enable Sandbox Inspection.
  • Set the FortiSandbox type to FortiSandbox Cloud.
  • Select the FortiSandbox Cloud region.
  • Select 'Apply'.

Sandboxing results are shown on the Sandbox tab in the FortiGate Cloud portal. For more information about FortiGate Cloud, see the FortiGate Cloud documentation.

 
FortiCloud activation if the appliances are in HA.
In most cases, joining the primary device in an HA cluster to FortiGate Cloud will trigger a join request from the HA secondary as well, and it is not necessary to make a separate request to join the secondary device to FortiGate Cloud. In some cases, it may be necessary to add the devices to FortiGate Cloud separately.
 

There are two options to do this.

 

Option 1:

Access the secondary FortiGate unit via CLI
To activate FortiGate Cloud on the secondary unit, first access its CLI from the primary FortiGate.

Use the following article to gain CLI access to the secondary unit:
Technical Tip: How to access secondary unit of HA cluster via CLI

 

Check available FortiGate Cloud domains
Before activating FortiGate Cloud, check the list of available domains:

execute fortiguard-log domain

 

Activate FortiGate Cloud using CLI
Once logged into the secondary unit, activate FortiGate Cloud with the following command:

execute fortiguard-log login <email> <password> <domain>

 

Replace <email>, <password>, and <domain> with valid FortiCloud account credentials and the appropriate domain returned from the previous step.

 

Option 2:

Shut down one appliance at a time and register it to the FortiCloud.

 

Trigger a failover to make the device with no FortiGate Cloud connection the primary, then activate FortiGate Cloud from the new primary unit.
The recommended way to failover an HA cluster is by using 'diagnose sys ha reset-uptime' on the primary unit. Failover should only be done during a maintenance window and will remove any existing SSL-VPN connections. See Technical Tip: Restoring HA master role after a failover using 'diag sys ha reset uptime'

 
 

Related documents:

FortiCare and FortiGate Cloud login

Technical Note: How to register and activate a FortiCloud account

Technical Tip: Enable Forticloud logging from CLI 

Labels:
46586
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.