How It Works

From raw configuration to clear security insight

Use this page for the technical workflow: how FortiGate configuration data is parsed, modelled, checked, and turned into deterministic findings.

Workflow

A simple product workflow from input to report

01

FortiGate config input

Start with a manual export or a read-only collector path.

02

ConfigSentry parses the configuration model

Policies, objects, services, interfaces, VDOMs, and administrative settings are parsed into a structured model.

03

Related objects and services are resolved

The product follows linked address objects, service definitions, and scope relationships so the review reflects the real policy meaning.

04

Deterministic checks run

Repeatable audit logic runs against that model to surface findings such as default admin exposure, any/any/any policy, or broad east-west access.

05

Engineer and executive reports are produced

The same audit run produces detailed technical findings and a simpler leadership-facing summary.

Context

Why the evaluation needs configuration context

Configuration charm representing policy context.

Policy example

One rule can hide multiple review points

  • Source scope and destination intent need to be reviewed together
  • Service definitions can widen exposure beyond the rule label
  • Logging state changes how defensible the policy is during audit review
Risk finding charm representing finding logic.

Finding logic

The result is more than a text match

ConfigSentry evaluates the policy together with the linked address group, service scope, and logging state.

That means the finding reflects broad exposure, weak auditability, and the affected FortiGate area rather than only showing that a rule exists.

Methodology

How the output stays reviewable

Configuration charm representing structured parsing.

Structured parsing first

The configuration is modelled before analysis so checks use meaningful relationships, not only raw text matches.

Risk finding charm representing deterministic audit logic.

Deterministic audit logic

Checks run consistently across policy, objects, services, admin settings, and posture signals.

Shield charm representing bounded standards guidance.

Standards mapping as guidance

Mappings support control discussion and evidence gathering, but they are not a compliance guarantee by themselves.

Next step

If the workflow fits, run it on your own config

Start with a FortiGate export, or review sample output first if you want one more proof point.

Run Your Free AuditView Sample Reports