Intro
Our ally used to update Fortigate device backups manually, which was time-consuming and prone to errors.
Through Ansible Engine, we automated the backup creation process and centralized the backups in a client-defined path.
Together with our ally, we managed to create backups for over 30 Fortigate devices in less than 5 minutes.
The Challenge
To reduce the time for updating backup configurations and changes made to Fortigate devices.
Previously, updating backups was done manually, taking time and prone to errors.
Backups must stay updated, as they are crucial for the security of the entire network, thus avoiding risks such as:
- Plain text usernames and passwords (Visible from the code).
- Actions in the code that deviate from defined functionality.
The Approach
Automating the backup processes of devices using Ansible Engine generates backups and places them in a defined path for easy administration.
We created Ansible Engine Playbooks responsible for extracting backups from Fortigate devices, making the process efficient. Our ally provided a user with sufficient permissions to carry out the activity, which is safeguarded in Ansible Vault, ensuring that sensitive data remains protected.
We centralized the backups in a path defined by the client, correctly labeling them with date tags for subsequent administration.
The Goal
Thanks to Ansible, backups for over 30 devices are now generated.