Fortinet Fortigate

There are multiple different methods of extracting the configuration from your Fortinet Fortigate devices, this guide outlines two of those methods.

Using HTTP(S)

We would recommend using HTTPS rather than HTTP for transferring your devices configuration as the latter provides no encryption. The procedure for getting the configuration from the device using HTTP(S) is as follows:

  1. Using your favorite web browser, connect to the HTTP(S) service provided by your Fortinet Fortigate device for remote management. You can do this by entering "https://" (recommended) or "http://" followed by your devices IP address.

  2. Logon using your administration username and password.

  3. Select the button to open the console window as indicated by the yellow arrow in the first image.

    A screenshot of a computer Description automatically generated

  4. Type the following command to turn off more prompts:

    Copy 
     config system console     
     set output standard
     end

  5. Click the bin icon(indicated by the blue arrow) to clear the console, then type the following command:

    Copy 
    show full-configuration

  6. Select the console download button indicated by the yellow arrow in the second image then add this file to Nipper through the add file dialog.A screenshot of a computer screen Description automatically generated

  7. To re-enable more prompts use the following command after downloading the full configuration:

    Copy 
    config system console     
    set output more
    end

Using SSH, Telnet Or The Console

For this procedure you will be using the Command Line Interface (CLI) of your Fortinet Fortigate device using an SSH client (such as OpenSSH or Putty), Telnet or through the console port. We would recommend using either SSH (for remote connections) or using a direct connection to the console port. Telnet provides no encryption of the communications and therefore your authentication credentials and configuration would be vulnerable if a malicious user were to monitor your connection.

  1. Connect to the Fortinet Fortigate using your favorite SSH client, Telnet or a direct console connection.

  2. Logon using your administration authentication credentials.

  3. Execute the following CLI command and capture the output (possibly using the cut and paste facility):

    Copy 
    show full-configuration

  4. Save the captured output to a file and remove any visible page lines (i.e. --More--).