n8n-nodes-fortimanager

This is an n8n community node for FortiManager API integration. It provides comprehensive network security management capabilities for your n8n workflows.

Features

$3

- 🔥 Security Console: Policy package installation and deployment (NEW!)
- Install policy packages to devices or device groups
- Preview installations before deployment
- Install multiple packages in parallel
- ADOM revision support for change tracking
- Returns task ID for monitoring deployment progress
- Policy Management (PM): Get firewall policies and addresses
- List all firewall policies (package or device-based)
- Get specific policy details
- Get firewall address objects
- Device Management (DVM): Full device lifecycle management
- List all managed devices with filtering
- Get device details
- Add new devices to FortiManager
- Update device configuration
- Delete devices from management
- Task Management: Monitor and manage FortiManager async operations
- List all tasks with filtering
- Get task details by ID
- Wait for task completion with configurable polling
- System Operations (SYS): System-level management
- Execute JSON proxy operations

$3

- CLI Operations: Execute CLI commands on managed devices
- Security Operations: Manage security profiles (IPS, AV, Web Filter, etc.)
- User Management (UM): Handle user accounts and permissions
- DVMDB Operations: Device database and ADOM operations
- Advanced PM Operations: Create, update, delete policies and objects

Installation

To use this community node in your n8n instance:

``bash
npm install n8n-nodes-fortimanager
`

Configuration

Configure your FortiManager credentials with:
- Base URL: Your FortiManager instance URL (e.g., https://fmg.company.com)
- Authentication Type: Choose between Session-based (Username & Password) or API Key
- Username/Password: For session-based authentication
- API Key: For token-based authentication
- Ignore SSL Issues: Option to bypass SSL validation (for development)

Usage

The node provides multiple API domains organized hierarchically:

$3

Resource: Firewall
- List Policies: Get all firewall policies from a policy package or device
- Filter by package or device-based access
- Support for VDOM-specific queries
- Pagination support for large datasets
- Get Policy: Retrieve specific policy details by ID
- Get Firewall Addresses: List firewall address objects

$3

Resource: Device
- List Devices: Get all managed devices in an ADOM
- Filter by device properties
- Select specific fields to return
- Pagination support
- Get Device: Retrieve detailed information about a specific device
- Add Device: Register a new FortiGate device to FortiManager
- Supports all device types (FortiGate, FortiSwitch, FortiMail, etc.)
- Configure management mode (FortiManager, FortiAnalyzer, or both)
- Optional platform and OS version specification
- Update Device: Modify device configuration
- Update IP address, credentials, description
- Change management mode
- Delete Device: Remove a device from FortiManager management

$3

Resource: Task
- List Tasks: Get all FortiManager tasks
- Filter by state, percent complete, etc.
- Pagination support
- Get Task: Retrieve specific task details by task ID
- View task state, progress, and result
- Wait for Task: Poll a task until completion
- Configurable timeout (default: 5 minutes)
- Configurable poll interval (default: 5 seconds)
- Returns final task state (done, error, aborted, warning)

$3

Resource: Proxy
- Execute JSON: Execute JSON-RPC proxy operations

Operation Parameters

$3

- ADOM: Administrative Domain (default: "root" for global)
- Filter: FortiManager filter expression (e.g., name==device-01)
- Limit: Maximum number of results to return
- Return All: Use pagination to fetch all results

$3

- Device Name: Name or hostname of the device
- Device IP: IP address for management connection
- Username/Password: Admin credentials for device access
- Management Mode: FortiManager only, FortiAnalyzer only, or both

$3

- Task ID: Numeric task identifier
- Timeout: Maximum wait time in seconds
- Poll Interval: How often to check task status

Examples

$3

`
Domain: Device Manager (dvm)
Resource: Device
Operation: List
ADOM: root
Return All: true
`

$3

`
Domain: Device Manager (dvm)
Resource: Device
Operation: Add
ADOM: root
Device Name: FG-Branch-01
Device IP: 192.168.1.99
Username: admin
Password: **
`

$3

`
Domain: Security Console
Resource: Install
Operation: Install Package
ADOM: root
Package Name: default
Install Scope: Specific Device
Device Name: FGT-Branch-01
VDOM: root
`

$3

`
Domain: Task
Resource: Task
Operation: Wait
Task ID: {{$json.taskId}} # From previous install operation
Timeout: 300 seconds
Poll Interval: 5 seconds
`

$3

`
Domain: Security Console
Resource: Install
Operation: Reinstall Packages (Multiple)
ADOM: root
Targets JSON:
[
{"pkg": "hub-package", "scope": {"name": "hub-fgt", "vdom": "root"}},
{"pkg": "branch-package", "scope": {"name": "branch-fgt", "vdom": "root"}}
]
``

Requirements

- n8n version 0.87.0 or later
- FortiManager 7.6.2 or later
- Valid FortiManager API credentials

License

MIT