Troubleshooting OCI SDN connector
You can check if API calls are made successfully by running diagnose test application ocid 1
. The following shows an example of a successful configuration:
The following shows an example of a failed configuration:
Check the following to see if you made other unexpected changes:
- Tenant ID
- User ID
- Compartment ID
- Does the specified OCI user belong to the Administrator group on the OCI portal?
- Does the fingerprint on the OCI portal match the one that the specified user has on the FortiGate-VM? If you change the certificate, its corresponding fingerprint must be updated or added to the OCI user on the OCI portal. In the earlier example, the fingerprint on the OCI portal and the SDN connector settings match.
- Does the OCI security list on the Internet-facing subnet allow proper outgoing access from the FortiGate?