Fortinet OT Security Lab Guide for FortiOS 7.2

Network Topology
Lab 1: Introduction
Lab 2: Device Detection
VM Username and Passwords
Exercise 1: Configuring Device Detection on FortiGate
Configure FortiAnalyzer Logging on Edge-FortiGate (Root)
Configure the Security Fabric on Edge-FortiGate (Root)
Configure the Security Fabric on FortiGate-1
Authorize the Downstream FortiGate (FortiGate-1) on the Root FortiGate (Edge-...
Configure the Security Fabric on FortiGate-2
Authorize the Downstream FortiGate (FortiGate-2) on the Root FortiGate (Edge-...
Authorize All Security Fabric FortiGate Devices on FortiAnalyzer
Check the Security Fabric Deployment Result
Lab 3: Access Control
Exercise 1: Configuring Local Authentication
Configure Local Users
Configure Firewall Policy Authentication
Test the Policy-Based Authentication
Exercise 2: Configuring FSSO Authentication
Review the FSSO Configuration on FortiGate
Assign FSSO Users to a Firewall Policy
Test the User Authentication
Lab 4: Segmentation
Exercise 1: Configuring Microsegmentation
Configure a Software Switch on FortiGate-1
Manage Traffic Between PLC-1 and PLC-2
Configure a Software Switch on FortiGate-2
Exercise 2: Configuring Internal Segmentation
Configure Firewall Policies to Allow Traffic Between Floors
Lab 5: Protection
Exercise 1: Configuring Industrial Signatures
Generate Modbus Traffic
Review Logs
Generate IEC 104 Communication Traffic
Review Logs
Exercise 2: Configuring an Application Filter Sensor
Create an Application Sensor
Generate and Monitor Traffic
Lab 6: Logging and Monitoring Configuration
Exercise 1: Preparing Devices for Logs and Alerts
Configure Edge-FortiGate to Send Logs to FortiAnalyzer and FortiSIEM
Configure FortiAnalyzer
Configure a Rule on FortiSIEM for Incidents
Generate Logs
Exercise 2: Examining Logs and Events on FortiAnalyzer
Explore Log View
Use Log Filters
Create a Custom View
Explore FortiView
Explore FortiSOC
View OT Security Events and Incidents
Exercise 3: Configuring a Rule to Monitor Performance
Configure a Rule to Monitor Fuel Pump Server Temperature Sensors
Lab 7: Risk Assessment
Exercise 1: Running a Default Report
Exercise 2: Building a Chart-Based Report on a Log Search
Exercise 3: Executing Default Reports on FortiSIEM
Exercise 4: Building Reports From Analytics on FortiSIEM
Create a Report on Performance for OT Devices
Create a Report on Traffic for Purdue Level 1 Devices
Create a Report on Modbus and IEC 104 service
Create a Report on OT Security Events From FortiAnalyzer
Exercise 5: Building an OT Dashboard on FortiSIEM
Lab 8: Use Case 1
Exercise 1: Configuring Devices
Network Topology
Requirements
Exercise 2: Testing the Configuration
Lab 9: Use Case 2
Exercise 1: Configuring Devices
Network Topology
Requirements
Exercise 2: Testing the Configuration