AnsweredHot!FSSO Local vs "Collector and Agent"

Author
nbctcp
Silver Member
  • Total Posts : 93
  • Scores: 4
  • Reward points: 0
  • Joined: 2015/03/05 04:48:26
  • Location: Indonesia
  • Status: offline
2020/02/24 15:04:51 (permalink) 6.2
0

FSSO Local vs "Collector and Agent"

SW INFO:
-Fortigate VM Eval 6.2.3
 
I just tried both method of FSSO which is Local and  "Collector and Agent".
Since both can do
-point to multiple AD
-filter to certain groups only
 
QUESTIONS:
1. what  "Collector and Agent" can do which Local FSSO can't do
2. in what situation Local is enough because Local doesn't have to install any software
tq

Attached Image(s)

#1
Alivo_ FTNT
Platinum Member
  • Total Posts : 89
  • Scores: 42
  • Reward points: 0
  • Joined: 2013/04/30 12:42:47
  • Location: Fortinet TAC Prague
  • Status: offline
Re: FSSO Local vs "Collector and Agent" 2020/02/25 00:40:05 (permalink) ☼ Best Answerby nbctcp 2020/02/25 00:50:19
5 (3)
Hello,
 
What Collector Agent can do ie. is:
polls: 672, 673, 680, 4768, 4769, 4776, 4624 Event IDs unlike polling from FortiGate limited to 4768, 4769.

IP ignore list
Workstation check
RDP logon override
Extensive logging capability for troubleshooting
Scalability - can suit very large environments with DCs around the globe
Various methods of getting logon information
+ Collector Agent does not use FortiGate's hw resources
 
to name few advantages over polling directly from FortiGate.
 
Local might be good enough for a smaller office with modest AD environment.
 
Best Regards,
Alivo
 
 
post edited by Alivo_ FTNT - 2020/02/25 00:41:14
#2
xsilver
Expert Member
  • Total Posts : 482
  • Scores: 123
  • Reward points: 0
  • Joined: 2015/02/02 03:22:58
  • Location: EMEA
  • Status: offline
Re: FSSO Local vs "Collector and Agent" 2020/02/25 01:35:27 (permalink) ☄ Helpfulby nbctcp 2020/02/25 01:45:24

Kind Regards,
Tomas
#3
Jump to:
© 2020 APG vNext Commercial Version 5.5