Reddit reviews UTM Security with Fortinet: Mastering FortiOS

As others have said, go 5.6.x instead of 6.0.x. Your switches will need to be at 3.6.8 (not 6.0.x).

Your company or your customer has to give you the ability to create support tickets with Fortinet. That's just a requirement.

I wouldn't worry about the NSE 3 training. Everything below NSE 4 is pretty non-technical.

Check out Fortinet's own forum as well.

I realize its gigantic, but reading through the FortiOS Handbook can really help. It's a little dated, but if you wanted a quicker intro to Fortinet mindset and configs, UTM Security with Fortinet is good. Just realize it was written a couple versions back.

What else you focus on really depends on what else you need to implement. For example:

• Wan facing servers - DOS policies, VIP, and remember to use match-vip in security policies
  
• Deep inspection - Certificate setup, whitelists, and separate security policies using Internet Service Database for services/sites that do certificate pinning
  
• Failover (not SD-WAN) - link-monitor, route priority, policy routes, etc.
  
  I'd recommend putting your interfaces in zones, even just a single interface, and only creating security policies for the zones. Makes changing things later much easier.
  
  If you've got specific things you're working on, the forums are great places to get pointers.
  
  Good luck!