Fortinet black logo

Campus WLAN Deployment Guide

Home FortiAP / FortiWiFi 7.0.0 Campus WLAN Deployment Guide
7.0.0
7.0.0

Configure WiFi Controller for High Availability

Configure WiFi Controller for High Availability

Configuring the FortiGate WiFi controller in HA A-P mode allows redundancy and failover in case one member of the cluster fails. HA configurations can be very complex and contain many granular settings to fine-tune the behavior of your HA cluster. For more information, refer to the HA chapter of the FortiOS Admin Guide.

To configure the basic HA settings
  1. Go to System > HA.
  2. In Mode, select Active-Passive.
  3. In Device priority, enter 128, the default.
    1. When configuring the secondary WiFi controller, use 64 for the priority.
  4. Enter a Group name.
    1. The Group name should match on the secondary controller.
  5. Choose the Heartbeat Interfaces, these fields are often preconfigured.

  6. For Heartbeat Interface Priority, this example uses 50, 50 for equal priority.

  7. When you are finished, click OK.

Repeat the above setup for the Secondary WiFi Controller
  1. See Power on and the first login.
    1. Move the setup laptop Ethernet cable to the secondary FortiGate.
    2. The admin password should match the Primary.
    3. Use a different hostname for the secondary controller, such as "SecondaryWLANcontoller".
  2. See To configure the basic HA settings.
    1. Set the device priority of the secondary controller to 64.
    2. The group name should be identical on both units.

Synchronize the HA Controller Pair

  1. Connect the HA1 and HA2 ports of the controller pair using Ethernet cables.
  2. Add a (possibly temporary) MGMT switch, and connect each management port and the administrative laptop to the switch (or same untagged VLAN, or other equivalent).
  3. Open a browser to https://192.168.1.99 and log in to the controller(s). The primary will respond.

  4. Go to System > HA and verify that both controllers are synchronized. If not, give it a few minutes.

    Now any changes on the primary will be mirrored on the secondary.

  5. In this scenario, the Secondary Controller acts as a backup and only becomes active in the case of a Primary Controller failure where heartbeats cannot be detected over both HA ports within the configured threshold.

Previous
Next

Configure WiFi Controller for High Availability

Configuring the FortiGate WiFi controller in HA A-P mode allows redundancy and failover in case one member of the cluster fails. HA configurations can be very complex and contain many granular settings to fine-tune the behavior of your HA cluster. For more information, refer to the HA chapter of the FortiOS Admin Guide.

To configure the basic HA settings
  1. Go to System > HA.
  2. In Mode, select Active-Passive.
  3. In Device priority, enter 128, the default.
    1. When configuring the secondary WiFi controller, use 64 for the priority.
  4. Enter a Group name.
    1. The Group name should match on the secondary controller.
  5. Choose the Heartbeat Interfaces, these fields are often preconfigured.

  6. For Heartbeat Interface Priority, this example uses 50, 50 for equal priority.

  7. When you are finished, click OK.

Repeat the above setup for the Secondary WiFi Controller
  1. See Power on and the first login.
    1. Move the setup laptop Ethernet cable to the secondary FortiGate.
    2. The admin password should match the Primary.
    3. Use a different hostname for the secondary controller, such as "SecondaryWLANcontoller".
  2. See To configure the basic HA settings.
    1. Set the device priority of the secondary controller to 64.
    2. The group name should be identical on both units.

Synchronize the HA Controller Pair

  1. Connect the HA1 and HA2 ports of the controller pair using Ethernet cables.
  2. Add a (possibly temporary) MGMT switch, and connect each management port and the administrative laptop to the switch (or same untagged VLAN, or other equivalent).
  3. Open a browser to https://192.168.1.99 and log in to the controller(s). The primary will respond.

  4. Go to System > HA and verify that both controllers are synchronized. If not, give it a few minutes.

    Now any changes on the primary will be mirrored on the secondary.

  5. In this scenario, the Secondary Controller acts as a backup and only becomes active in the case of a Primary Controller failure where heartbeats cannot be detected over both HA ports within the configured threshold.

Previous
Next