Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • OCI Administration Guide

    Home FortiGate Public Cloud 6.2.0 OCI Administration Guide
    6.2.0
    7.6.0
    7.4.0
    7.2.0
    7.0.0
    6.4.0
    6.2.0

    Configuring an OCI Fabric connector

    Configuring an OCI Fabric connector

    To configure an OCI Fabric connector:
    1. In FortiOS, go to Security Fabric > Fabric Connectors. Click Create New, then select Oracle Cloud Infrastructure (OCI).

    2. Configure the connector as follows:
      1. Name: Enter the desired connector name.
      2. User ID: Enter the OCID of the OCI user who belongs to the administrator group. You can find the OCID on the OCI portal as shown:

        The user must be in the Administrators group on OCI.

      3. Tenant ID: Enter the tenant's OCID. You can find this on the OCI portal as shown:

      4. Compartment ID: Enter the compartment's OCID. If you have multiple compartments, choose the desired one. You can find this on the OCI portal as shown:

      5. OCI Region: Choose the one currently in use.
      6. For the OCI Certificate field, you must select a certificate that satisfies OCI key size limits. The minimum size is 2048 bits. Do one of the following:
        1. Select the built-in default certificate called Fortinet_Factory.
        2. Follow steps 1-2 in Using a custom certificate to configure a custom certificate.
    3. At this stage, you must register the certificate's fingerprint to the specified OCI user.
      1. Go to the OCI user, then API Keys > Add Public Key.

      2. If you selected the Fortinet_Factory certificate in step 2f, do the following:
        1. In FortiOS, go to System > Certificate. Select Fortinet_Factory, then click Download.

        2. You now have the Fortinet_Factory.cer file. Create a public key file in PEM format from it, using a freely available tool of your choice such as OpenSSL.
      3. Copy and paste the content of the certificate PEM key file in the Add Public Key window in OCI. Click Add.

      4. You now see the fingerprint.

        You can configure the following for the fingerprint:

        1. Update Interval: The default value is 60 seconds. You can change the value to between 1 and 3600 seconds.
        2. Status: Green means that the connector is enabled. You can disable it at any time by toggling the switch.
      5. Click OK.

        You can also configure the Fabric connector using the CLI. Execute the following commands:

        config system sdn-connector

        edit “<OCI connector name>”

        The show command shows what is currently configured. To set each element, execute set <element> <value> and then next end saves the configuration and returns to the original indentation that you started with.

        You can also see the configuration by running get <OCI connector name>. In this case, enter get oci-sdn.

    Previous
    Next

    Configuring an OCI Fabric connector

    Configuring an OCI Fabric connector

    To configure an OCI Fabric connector:
    1. In FortiOS, go to Security Fabric > Fabric Connectors. Click Create New, then select Oracle Cloud Infrastructure (OCI).

    2. Configure the connector as follows:
      1. Name: Enter the desired connector name.
      2. User ID: Enter the OCID of the OCI user who belongs to the administrator group. You can find the OCID on the OCI portal as shown:

        The user must be in the Administrators group on OCI.

      3. Tenant ID: Enter the tenant's OCID. You can find this on the OCI portal as shown:

      4. Compartment ID: Enter the compartment's OCID. If you have multiple compartments, choose the desired one. You can find this on the OCI portal as shown:

      5. OCI Region: Choose the one currently in use.
      6. For the OCI Certificate field, you must select a certificate that satisfies OCI key size limits. The minimum size is 2048 bits. Do one of the following:
        1. Select the built-in default certificate called Fortinet_Factory.
        2. Follow steps 1-2 in Using a custom certificate to configure a custom certificate.
    3. At this stage, you must register the certificate's fingerprint to the specified OCI user.
      1. Go to the OCI user, then API Keys > Add Public Key.

      2. If you selected the Fortinet_Factory certificate in step 2f, do the following:
        1. In FortiOS, go to System > Certificate. Select Fortinet_Factory, then click Download.

        2. You now have the Fortinet_Factory.cer file. Create a public key file in PEM format from it, using a freely available tool of your choice such as OpenSSL.
      3. Copy and paste the content of the certificate PEM key file in the Add Public Key window in OCI. Click Add.

      4. You now see the fingerprint.

        You can configure the following for the fingerprint:

        1. Update Interval: The default value is 60 seconds. You can change the value to between 1 and 3600 seconds.
        2. Status: Green means that the connector is enabled. You can disable it at any time by toggling the switch.
      5. Click OK.

        You can also configure the Fabric connector using the CLI. Execute the following commands:

        config system sdn-connector

        edit “<OCI connector name>”

        The show command shows what is currently configured. To set each element, execute set <element> <value> and then next end saves the configuration and returns to the original indentation that you started with.

        You can also see the configuration by running get <OCI connector name>. In this case, enter get oci-sdn.

    Previous
    Next