When you create an Amazon Web Services (AWS) connector, you are authorizing FortiADC to periodically (default 30s) get information from AWS instances and dynamically populate it in the server pool configuration.
To create an AWS Connector:
- Go to Security Fabric > External Connectors.
- Click Create New.
- Under Public SDN, select Amazon Web Services (AWS) to display the configuration editor.
- Configure the following settings:
Name Type a name for the external connector object. Status
Toggle on to enable the external connector object.
Toggle off to disable the external connector object.
Update Interval (s)
Specify the update interval for the connector to get AWS objects and dynamically populates the information in the server pool configuration.
Access Key ID
Specify the access key ID.
Secret Access Key
Specify the secret access key.
Specify the region where your instances are deployed.
Use Metadata IAM
When FortiADC is deployed on AWS, you can assign IAM role for it to access EC2 instances and EKS objects.
- Click Save.
After the connector is created, you can select this connector when creating a server pool. FortiADC will then get the IP addresses of the instances from AWS and dynamically populate the objects in the server pool configuration.
You can use the IP Address Type option to get the private address or public address of the instance. This option is supported only when the FortiADC is deployed on AWS.