When you create an OCI connector, you are authorizing FortiADC to periodically (default 30s) get information of OCI instances and dynamically populates it in server pool configuration.
To create an OCI Connector:
- Go to Security Fabric > External Connectors.
- Click Create New.
- Under Public SDN, select OCI. The OCI screen is displayed.
- Configure the following options, and then click Save.
Name Type a name for the external connector object. Status
Toggle on to enable the external connector object.
Toggle off to disable the external connector object.
Update Interval (s)
Specify the update interval for the connector to get OCI objects and dynamically populates the information in the server pool configuration.
OCI region type
Specify the OCI region type.
Specify the OCI region where your compute instances are located.
The user ID to log in to OCI.
The tenant ID to log in to OCI.
The Compartment ID in which your compute instances are deployed.
The certificate that FortiADC uses to build connections with OCI.
OCI HA status
Enable this option if your OCI instances are deployed in HA mode.
Use Metadata IAM
When FortiADC is deployed on OCI, you can assign IAM role for it to access OCI objects.
After the connector is created, you can select this connector when creating a server pool. FortiADC will then get the IP addresses of the compute instances from OCI and dynamically populates the objects in server pool configuration, as shown in the following screenshots.
You can use the IP Address Type option to get the private address or public address of the instances. This option is supported only when FortiADC is deployed on OCI.