Introduction

Use the administration guide to understand how to customize and administer FortiSOAR™, including system, security and user management, and configuring templates.

Common Tasks

Some of the common task that an administrator can perform are:

  • License management
  • System configuration
  • Security management
  • User management
  • Appliance management
  • Secrets management - Deprecated in version 5.0.0
  • Playbook configuration
  • Application management

You can perform administration tasks using the Settings (Settings icon) icon in the upper right-hand corner near the User Profile icon.

Tasks and Permissions

To manage different modules, appropriate rights must be assigned to users. In FortiSOAR™, modules are applied to roles, for example, the Security module is applied to the Security Administrator role. Role permissions are based on the Create, Read, Update, and Delete model (CRUD). Each module within FortiSOAR™ has explicit CRUD permissions that you can modify and save within a single Role.

For example, to perform all tasks for system configuration, you must be assigned a role that has CRUD permissions on the Application module, or to be able to add and manage users, you must be assigned a role that at the minimum has Create and Update permissions on the People module.

By default, FortiSOAR™ has at least one role in place after installation, the Security Administrator.

Task Permissions required on the module
System configuration: Customizing FortiSOAR™ and configure several default options used throughout the system, including setting up authentication mechanisms and configuring dashboards and templates. Create, Read, Update, and Delete (CRUD) permissions on Application module. Default Role - Application Administrator.
Security management: Managing teams and roles. CRUD permissions on Security module. Default Role - Security Administrator.
Note: From version 4.12.0 onwards, the security administrator role also has CRUD permissions on the Secure Message Exchange and Tenants modules, so that this role can configure multi-tenanted systems.
User management: Adding and removing users and editing their permissions. CRUD permissions on People module.
Appliances management: Configuring data models, including picklist values and system navigation. CRUD permissions on Appliances module.
Secrets management: Managing the Secrets store. (Deprecated in version 5.0.0) CRUD permissions on Secrets module.
Playbook management: Configuring playbook collections and playbooks CRUD permissions on Playbook module. Default Role - Playbook Administrator.