Endpoint control Configuring endpoint control
FortiGate Version 4.0 Administration Guide
01-400-89802-20090424 643
http://docs.fortinet.com/ • Feedback
Viewing and configuring the software detection list
You can use Endpoint Control software detection to find out what applications are installed
on endpoints. The list of applications installed on endpoints is displayed in the Detected
Software column of the Endpoints list. To detect an application on an endpoint, the
endpoint must be running FortiClient 4.0.0 or a more recent version that supports
searching the Windows Registry for the names of the applications installed on the
endpoint.
You must also add entries to the Software Detection list that will match application names
in the endpoint’s Windows Registry. You can add up to 10 entries to the application list.
Each entry consists of a name and a pattern. The name is any wording you need to
describe the entry. The pattern is matched against names in the endpoint’s Windows
Registry. The pattern can be an application name, can include wildcards, or can be a Perl
regular expression.
To view the list of applications that endpoint control checks for, go to Endpoint Control >
Software Detection and view the Detected Software column. By default the software
detection list includes applications such as BitTorrent, Microsoft Office, and Skype.
Then, to configure software detection for an application, select Create New. Enter the
Name and Pattern information and select OK. You can also edit the items already added
to the list or delete entries on the list and add new ones.
FortiClient Installer
Download Location
Select one of the following options to determine the link that the
FortiClient Download Portal provides to non-compliant users to
download the FortiClient installer.
FortiGuard
Distribution Network
The FortiClient application is provided by the FortiGuard Distribution
Network. The FortiGate unit must be able to access the FortiGuard
Distribution Network. See “Configuring FortiGuard Services” on
page 264.
If the FortiGate unit contains a hard disk drive, the files from
FortiGuard Services are cached to more efficiently serve downloads to
multiple end points.
This FortiGate Users download a FortiClient installer file from this FortiGate unit.
This option is available only on FortiGate models that support upload
of FortiClient installer files. Upload your FortiClient installer file using
the execute restore forticlient CLI command. For more
information, refer to the FortiGate CLI Reference.
Custom URL Specify a URL from which users can download the FortiClient installer.
You can use this option to provide custom installer files even if your
FortiGate unit does not have storage space for them.
Minimum FortiClient
Version Required
Select the minimum requirement for the FortiClient version that must
be installed on the endpoints:
Latest Available — Endpoints must have the latest FortiClient version
available from the download location installed.
FortiClient Enterprise Edition 4.0.0 — Endpoints must have
FortiClient Enterprise Edition 4.0.0 installed.
FortiClient Enterprise Edition 4.0.1 — Endpoints must have
FortiClient Enterprise Edition 4.0.1 installed.
Specify — Enter the FortiClient version that endpoints must have
installed.
Fortinet recommends that administrators deploy a FortiClient version
update to their users or ask users to install the update and then wait a
reasonable period of time for the updates to be installed before
updating the minimum version required to the most recent version.
Note: Select This FortiGate or Custom URL if you want to provide a customized FortiClient
application. This is required if a FortiManager unit will centrally manage FortiClient
applications. For information about customizing the FortiClient application, see the
FortiClient Administration Guide.
To Next Page
Loading...