Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
bhinangt
New Contributor III

Created on ‎05-07-2024 07:34 AM

How to use credentials menu through collector?

When we add credentials in FortiSIEM admin settings, it only asks to map IP.


Same IP can belong to multiple clients also, But in mapping there is no option to select collector. So how to map credentials to correct device linked to correct collector.

 

Also do i need to allow supervisor to firewall port 22 if i want to add SSH credentials? This is not possible by allowing collector to firewall connection over port 22?

Labels:
1430
0 Kudos
1 Solution
Richie_C
Staff
Staff
In response to bhinangt

Created on ‎05-10-2024 06:28 AM

Yes, you should to run the discovery from the correct organization.

 

You only mentioned SSH above. Did you also configure SNMP credentials. Did the test credentials option work? Did the discovery succeed for SNMP?

Take a backup before making any changes

View solution in original post

1327
7 REPLIES 7
Richie_C
Staff
Staff

Created on ‎05-08-2024 03:01 AM

I don't have a collector in my lab but you should have a dropdown menu on the credentials page. It will be in the same place as the red square below. 

 

discovered by.PNG

If you select collector here, you only need to allow connections on tcp/22 from the collector. 

Take a backup before making any changes
1389
bhinangt
New Contributor III

Created on ‎05-09-2024 07:11 AM

This is snapshot from Global view with collector setup. No such option

 

Screenshot 2024-05-09 at 7.39.29 PM.png

1370
0 Kudos
Richie_C
Staff
Staff
In response to bhinangt

Created on ‎05-10-2024 02:06 AM

Can you provide some more information about your setup please?

 

Is it service provider or enterprise setup?

How many collector have you registered?

If in service provide mode, are the collectors dedicated to an org or are they multi org collectors?

Thanks

Take a backup before making any changes
1348
bhinangt
New Contributor III

Created on ‎05-10-2024 03:26 AM

Service Provider,
20 Collectors

No sharing of collectors, its dedicated.

 

Mean while instead of global view, i switched to individual organization view and added credentials. It went through collector, test was successful but then also no SNMP performance logs being reported.

Also not sure of the approach to add credentials is correct.

1337
Richie_C
Staff
Staff
In response to bhinangt

Created on ‎05-10-2024 06:28 AM

Yes, you should to run the discovery from the correct organization.

 

You only mentioned SSH above. Did you also configure SNMP credentials. Did the test credentials option work? Did the discovery succeed for SNMP?

Take a backup before making any changes
1328
bhinangt
New Contributor III

Created on ‎05-10-2024 01:26 PM

Thank you @Richie_C it worked!

1307
0 Kudos
Hinaseo
New Contributor

Created on ‎12-05-2024 02:06 PM

Great question! The issue with mapping credentials to the correct device linked to the appropriate collector can be tricky. Adding the ability to specify the collector would certainly streamline things. As for SSH credentials, allowing supervisor access to firewall port 22 seems to be a default requirement, but it’s worth exploring if collector-level access can achieve the same result.

464
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.