Fortinet Project
Charlotte, NC
Would be a 4-6 week+ consulting project
Can be entirely Remote
What this person will be doing: They have the following Fortinet environment:
- US – 2 Sites, 2 Firewalls each site
- Germany - 2 sites, 2 firewalls each site
- UK – 2 sites, 1 firewall each site
- Australia – 2 sites, 1 firewall each site
- Hong Kong – 1 site, one firewall
- China – 1 site, one firewall
- Poland – 1 site, one firewall
- FortiManager – running on an on-premise VM in Germany
- FortiAuthenticator Appliance – running in Azure
Need to accomplish the following
- Ensure that all sites have web mode turned off on VPNs
- Ensure that all sites using real cert, not the default
- Create named local admin accounts for regional IT using MFA
- Properly configure FortiAuthenticator to use AzureAD so that Office 365 MFA works for VPN users. If that doesn’t work, then need to use another MFA solution – prefer MSFT Authenticator but FortiToken/ FortiToken Mobile worst-case
- Move FortiManager to Azure (move or destroy, re-create) and attach all firewalls to it.
- Clean up rules
- Clean up routes
- Align rules
- Synchronize block lists
- Configure some additional site VPNs
- Troubleshoot one or two multi-site routing issues
- Set up dashboards
- Consult w/ me on what I need to buy and configure for cloud-based FortiManager and FortiAnalyzer
- (Later) Configure item 6