USM Anywhere™

AlienApp for Fortinet FortiManager Orchestration

As USM Anywhere surfaces events, alarms, and vulnerabilities, you can use FortiManager actions to respond to the events in your environment. Rather than manually adding addresses in the FortiManager user interface (UI) and entering the relevant information, you can use the AlienApp for Fortinet FortiManager response actions to automatically manage your FortiManager firewall using information from your USM Anywhere environment.

Example of alarms generated from the Fortigate AlienApp
Action Function

Add Address to Static URL Filter

Run this action to add the source or destination address to a static URL filter in your FortiManager environment.

Add Address to Address Group Run this action to add the destination address to a group in your FortiManager environment.
Add to Custom Category Run this action to add an address to a group in your FortiManager environment.

To view information about these actions in USM Anywhere

  1. In USM Anywhere, go to Data Sources > AlienApps.
  2. Click the Available Apps tab.
  3. Search for the AlienApp, and then click the tile.
  4. On the AlienApps page, click the FortiManager tile.

  5. Click the Actions tab to display information for the supported actions.
  6. Click the History tab to display information about the executed actions.