In this recipe, you run a Security Rating, which analyzes your Security Fabric deployment to identify potential vulnerabilities and highlight best practices.
Using the Security Rating can help you improve your network configuration, deploy new hardware and software, and gain more visibility and control over your network. By regularly checking your Security Rating percentile and your Security Rating Score and making the recommended improvements, you can have confidence that your network is getting more secure over time.
You must have a valid Security Rating license from FortiGuard to run all available checks. If you do not have a license, only certain checks are available. For more information about these checks, see Security Best Practices & Security Rating Feature.
1. Checking the Security Rating widget
|
|
Go to the Dashboard and locate the Security Rating widget. In the example, the widget does not display any information because it has not been properly configured.
|
![]() |
|
Once configured, the widget displays a comparison between your Security Rating and the Security Rating of other users. You can either compare your rating with users from all industries or with only your industry . You can also compare your rating with users from all regions or only your region.
|
|
To change which users your score is compared to, select the widget settings using the menu in the top right corner of the widget.
|
![]() |
2. Checking your Security Rating
|
|
On Edge, go to Security Fabric > Security Rating. The Security Rating runs automatically on the root FortiGate. However, if you want more recent results, select Run Now to run another Security Rating.
You can also select whether to run the Security Rating on All FortiGates or on specific FortiGate devices in the Security Fabric.
|
![]() |
|
At the top of the page, you can see your network’s Security Rating, which shows which percentile your network is in compared to other users. You can also see your Security Rating Score, which is based on how many checks were passed or failed, as well as how many FortiGate units are in your network.
Further down the page, you can see information about each failed check, including which FortiGate failed the check, the effect on your network’s score, and recommendations for fixing the issue.
Easy Apply recommendations in the next stage. However, if your Security Rating is older than 30 minutes, you must run it again to apply these changes.
|
|
By using Easy Apply, you can change the configuration of any FortiGate in the Security Fabric, not just the root FortiGate.
Select all the changes that you want to make, then select Apply Recommendations.
|
![]() |
3. Results
|
|
Go to the Dashboard. The Security Rating widget displays the information from the newly run Security Rating.
|
![]() |
|
Go to Security Fabric > Physical Topology. Each FortiGate has a circle with a number beside it, displaying the number and severity of failed checks on that unit.
|
![]() |
|
To view the failed checks on a specific FortiGate unit, click the FortiGate. A screen appears, showing the information and allowing you to make changes for the Easy Apply recommendations.
|
![]() |
Your industry is determined based on your FortiCare account settings.
The post Security Rating appeared first on Fortinet Cookbook.
