Update Forticlient antivirus signatures without internet access (with FortiManager, FortiEMS)
We have servers (Windows servers) that are in a 3 tier model and therefore do not have Internet access. We want to do antivirus updates on these servers via fortimanager and fortiems. I saw on the admin guides the steps, here is attached:
To update the servers without using the Internet via FortiManager and FortiEMS, you need to follow these steps:
Configuring FortiGuard Services settings on FortiClient: FortiClient is the endpoint protection software that runs on the servers. In FortiClient 7.2.1, you need to configure the FortiGuard Services settings. This involves specifying the update servers that FortiClient should connect to for retrieving the antivirus updates.
Enabling push updates on FortiManager: FortiManager is the centralized management platform for your Fortinet devices. In FortiManager 7.2.2, you need to enable push updates. This allows FortiManager to distribute the antivirus updates to the servers.
By following these steps, you can establish a mechanism where the FortiManager, acting as an intermediary, pushes the antivirus updates to the servers. The servers themselves don't need direct access to the Internet.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.