- Log in to the FortiManager graphical user interface (GUI).
- Go to System Settings > System Settings.
- On the dashboard panel, go to Admin > Administrators and click Create New.
- 
In the New Administrator window, enter a name and password for the new account and enable the following settings:
- Admin Profile: Super_User
- Administrative Domain: All ADOMs
- Policy Package Access: All Packages
- JSON API Access: Read-Write
 
- Click OK to save the new administrator profile.
Connecting the BlueApp for Fortinet FortiManager in USM Anywhere
After you obtain the credentials, you must configure the connection within USM Anywhere. To enable the BlueApp for Fortinet FortiManager- In USM Anywhere, go to Data Sources > BlueApps.
- Click the Available Apps tab.
- Search for the BlueApp, and then click the tile.
- Click Configure API.
- If you have more than one deployed USM Anywhere Sensor, select the sensor that you want to use for the enabled BlueApp. BlueApps operate through a deployed sensor and use APIs to integrate with the connected third-party technology. Select the sensor that can access the integration endpoint. The HTTPS connections to the API will originate from this sensor, so it is important to make sure the sensor has network access to the BlueApp API endpoints.
- Enter the IP Address or FQDN.
- Enter the username for the account you created in the FortiManager GUI.
- (Optional) Select Validate HTTPS host name and Require CA certificate checkboxes and enter the certificate authority (CA) certificate if you want to use this option.
- (Optional) Create a name and password for the external block list.
- Click Save.
Create and Link Credentials for the External Block Lists (Optional)
The BlueApp for Fortinet FortiManager can utilize USM Anywhere to populate and manage external block lists for IP addresses, domains, and FortiGuard categories. To use the external block lists feature in USM Anywhere, you need to create a name and password in the BlueApp for Fortinet FortiManager API configurations page and enter it into your FortiManager instance. See the Fortinet documentation on Threat Feed configuration for further details. To configure the external block list connection in FortiManager- Log in to the FortiManager graphical user interface (GUI).
- Go to Policy & Objects > Threat Feeds.
- Click Create New.
- Select either FortiGuard Category, IP Addresses, or Domain Name to create a connected block list for the selected item.
- Enter a name for the new threat feed.
- 
In the URI of external resource field, your URI will be populated as follows:
http://192.168.1.1:0/apps/apiActions/fortiGate/getblocklist?
Following the question mark, you need to enter either type=ipaddress,type=domain, ortype=category, depending on which you are creating a threat feed for.
- Enter the username and password you created previously in the BlueApp for Fortinet FortiManager Configure API page in LevelBlue.
- (Optional) Enter the Category ID, Refresh Rate, and Comments.
- Click OK to save the new Threat Feed.
- Repeat steps 3-9 for each block list (Category, IP Addresses, and Domain Name).