Security

Enable Let’s Encrypt Certificate on SSL-VPN enabled FortiGate Interface

With the release of FortiOS 7, Fortinet added a new feature that supports Automated Certificate Management Environment (ACME) as defined in RFC8555.This allows administrators to use the free SSL certificates, provided from Let’s Encrypt. Note:Certificates issued by Let’s Encrypt are free of charge, but are only valid for 90 days.Unlike most other certification authorities, Let’s […]

Enable Let’s Encrypt Certificate on SSL-VPN enabled FortiGate Interface Read More »

Symantec Endpoint Protection Client command line parameters

The client part of Symantec’s (sorry Broadcom’s) Endpoint Protection can be controlled via command line in various ways.Here is the list of parameters you can use for the smc.exe as of Version 14.3: Parameter Description Applies to smc -start * Starts the client service.Returns 0, -1 All supported versions smc -stop *† Stops the client

Symantec Endpoint Protection Client command line parameters Read More »

FortiGate: Disable Logging for Dedicated IPS Signatures

During the last weeks we saw lots of alert messages from Fortinet firewalls that blocked attack attempts against web servers using the built-in IPS system. There were so many of these messages that they completely flooded the monitoring system. So I was asked for a solution to filter out these messages The messages look similar

FortiGate: Disable Logging for Dedicated IPS Signatures Read More »

Symantec EDR Appliance with Public Certificate

In case, you want to use a public certificate on your Symantec Endpoint Detection and Response (EDR) Appliance (also known as ATP), you need to create a certificate file that includes all certificates from intermediate and the root certification authorities (CAs). In our case, the certificate itself looks as follows:

Symantec EDR Appliance with Public Certificate Read More »