Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • CLI Reference

    Home FortiADC 7.4.0 CLI Reference
    7.4.0
    7.6.0
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.1.4
    7.1.3
    7.1.2
    7.1.1
    7.1.0
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.2.6
    6.2.5
    6.2.4
    6.2.3
    6.2.2
    6.2.1
    6.2.0
    6.1.6
    6.1.5
    6.1.4
    6.1.3
    6.1.2
    6.1.1
    6.1.0
    6.0.2
    6.0.1
    6.0.0
    5.4.5
    5.4.3
    5.4.2
    5.4.1
    5.4.0
    5.3.0
    4.8.1
    4.7.0

    config system sdn-connector

    config system sdn-connector

    FortiADC periodically gets a Kubernetes object (service, node, pod) by a built-in container connector. Service is required to be exposed on NodeIP or External IP.

    The real server pool can be automatically created. Once the real server pool is created automatically, the corresponding real server will be created and will be referenced as a pool member.

    Syntax

    Kubernetes Connector

    config system sdn-connector

    edit <name>

    set type {kubernetes | aws | oci |sap}

    set status {enable | disable}

    set server <server address>

    set server-port <port number>

    set secret-token <string>

    set update-interval <seconds>

    next

    end

    OCI Connector

    config system sdn-connector

    edit <name>

    set type oci

    set tenant-id <string>

    set compartment-id <string>

    set user-id <string>

    set oci-region <string>

    set oci-cert <string>

    set use-metadata-iam {enable | disable}

    set ha-status {enable | disable}

    next

    end

    AWS Connector

    config system sdn-connector

    edit <name>

    set type aws

    set status {enable | disable}

    set aws-region <string>

    set aws-accesskey <string>

    set aws-secretkey <string>

    set update-interval <seconds>

    set use-metadata-iam {enable | disable}

    next

    end

    SAP Connector

    config system sdn-connector

    edit <name>

    set status {enable | disable}

    set server <server address>

    set sap-ms-http-port <port number>

    set sap-icm-http-port <port number>

    set sap-sidadm <string>

    set sap-password <string>

    set update-interval <seconds>

    next

    end

    CLI Parameter

    Description

    type

    The type of SDN.

    Kubernetes connector

    status

    Enable/disable SDN connector

    server

    Server IP address.

    server-port

    Port number. Default is 6443. Range is 1 to 65535.

    secret-token

    Specify a secret token.

    update-interval

    Specify an update interval in seconds. Default is 30. Range is 30 to 3600.

    OCI connector

    tenant-id

    Specify the OCI region type.The tenant ID to log in to OCI.

    compartment-id

    The Compartment ID in which your compute instances are deployed.

    user-id

    The user ID to log in to OCI.

    oci-region

    Specify the OCI region where your compute instances are located.

    oci-cert

    The certificate that FortiADC uses to build connections with OCI.

    use-metadata-iam

    When FortiADC is deployed on OCI, you can assign IAM role for it to access OCI objects.

    ha-status

    Enable this option if your OCI instances are deployed in HA mode.

    AWS connector

    status

    Enable or disable the AWS connector.

    aws-region

    Specify the region where your instances are deployed.

    aws-accesskey

    Specify the access key ID.

    aws-secretkey

    Specify the secret access key.

    update-interval

    Specify the update interval for the connector to get AWS objects and dynamically populates the information in the server pool configuration.

    use-metadata-iam

    When FortiADC is deployed on AWS, you can assign IAM role for it to access EC2 instances and EKS objects.

    SAP Connector

    status

    Enable or disable the SAP connector.

    server

    Type the IP address of the SAP server.

    sap-ms-http-port

    		 Specify the SAP MS HTTP port that FortiADC uses to communicate with the SAP server.

    sap-icm-http-port

    Specify the ICM HTTP Port.

    sap-sidadm

    Specify the SID admin account that FortiADC uses to access the resources in this account.

    sap-password

    Specify the password.

    update-interval

    Specify the update interval for the connector to get SAP objects and dynamically populates the information in the server pool configuration.

    Previous
    Next

    config system sdn-connector

    config system sdn-connector

    FortiADC periodically gets a Kubernetes object (service, node, pod) by a built-in container connector. Service is required to be exposed on NodeIP or External IP.

    The real server pool can be automatically created. Once the real server pool is created automatically, the corresponding real server will be created and will be referenced as a pool member.

    Syntax

    Kubernetes Connector

    config system sdn-connector

    edit <name>

    set type {kubernetes | aws | oci |sap}

    set status {enable | disable}

    set server <server address>

    set server-port <port number>

    set secret-token <string>

    set update-interval <seconds>

    next

    end

    OCI Connector

    config system sdn-connector

    edit <name>

    set type oci

    set tenant-id <string>

    set compartment-id <string>

    set user-id <string>

    set oci-region <string>

    set oci-cert <string>

    set use-metadata-iam {enable | disable}

    set ha-status {enable | disable}

    next

    end

    AWS Connector

    config system sdn-connector

    edit <name>

    set type aws

    set status {enable | disable}

    set aws-region <string>

    set aws-accesskey <string>

    set aws-secretkey <string>

    set update-interval <seconds>

    set use-metadata-iam {enable | disable}

    next

    end

    SAP Connector

    config system sdn-connector

    edit <name>

    set status {enable | disable}

    set server <server address>

    set sap-ms-http-port <port number>

    set sap-icm-http-port <port number>

    set sap-sidadm <string>

    set sap-password <string>

    set update-interval <seconds>

    next

    end

    CLI Parameter

    Description

    type

    The type of SDN.

    Kubernetes connector

    status

    Enable/disable SDN connector

    server

    Server IP address.

    server-port

    Port number. Default is 6443. Range is 1 to 65535.

    secret-token

    Specify a secret token.

    update-interval

    Specify an update interval in seconds. Default is 30. Range is 30 to 3600.

    OCI connector

    tenant-id

    Specify the OCI region type.The tenant ID to log in to OCI.

    compartment-id

    The Compartment ID in which your compute instances are deployed.

    user-id

    The user ID to log in to OCI.

    oci-region

    Specify the OCI region where your compute instances are located.

    oci-cert

    The certificate that FortiADC uses to build connections with OCI.

    use-metadata-iam

    When FortiADC is deployed on OCI, you can assign IAM role for it to access OCI objects.

    ha-status

    Enable this option if your OCI instances are deployed in HA mode.

    AWS connector

    status

    Enable or disable the AWS connector.

    aws-region

    Specify the region where your instances are deployed.

    aws-accesskey

    Specify the access key ID.

    aws-secretkey

    Specify the secret access key.

    update-interval

    Specify the update interval for the connector to get AWS objects and dynamically populates the information in the server pool configuration.

    use-metadata-iam

    When FortiADC is deployed on AWS, you can assign IAM role for it to access EC2 instances and EKS objects.

    SAP Connector

    status

    Enable or disable the SAP connector.

    server

    Type the IP address of the SAP server.

    sap-ms-http-port

    		 Specify the SAP MS HTTP port that FortiADC uses to communicate with the SAP server.

    sap-icm-http-port

    Specify the ICM HTTP Port.

    sap-sidadm

    Specify the SID admin account that FortiADC uses to access the resources in this account.

    sap-password

    Specify the password.

    update-interval

    Specify the update interval for the connector to get SAP objects and dynamically populates the information in the server pool configuration.

    Previous
    Next