What should not be a characteristic of trusted hosts in FortiAnalyzer?

Trusted hosts in FortiAnalyzer are defined by their ability to communicate securely and reliably with the system. A critical characteristic of trusted hosts is that they are expected to have known, secure, and consistent connections.

The presence of unknown IP addresses undermines the concept of a trusted host. Trusted hosts should operate under known parameters that enhance the overall security posture of the FortiAnalyzer. This includes having secure connection methods such as VPN or SSH, using static IP addresses for predictability and safety, and being built on approved computer hardware that meets the organization's security requirements. All these characteristics are aimed at reducing the likelihood of unauthorized access or data breaches.

In contrast, unknown IP addresses introduce uncertainty and the potential for malicious activity. By not knowing the source of a connection, there is no assurance that the communication is being established by a legitimate and authorized entity. Therefore, ensuring that trusted hosts have known and secure identifiers is essential for maintaining the integrity and security of the FortiAnalyzer system.