Fortinet Document Library

Version:


Table of Contents

CLI Reference

6.0.6
Download PDF
Copy Link

system automation-stitch

Use this command to create automated workflows that define the action type taken for user-defined automation in the Security Fabric.

When certain triggers or events takes place in the Security Fabric, predefined actions can be carried out through the use of automation. The actions can be executed in the Security Fabric root FortiGate, or relayed to the downstream FortiGates.

This feature, coupled with triggers and actions, can be used to carry out various operations such as:

  • Quarantine a device's MAC address when an indicator of compromise (IOC) is detected
  • Send an email alert when HA failover occurs
  • Send an iOS push notification to FortiExplorer when the configuration of a FortiGate in the Security Fabric changes

History

The following table shows all newly added, changed, or removed entries as of FortiOS 6.0.

Command Description

config system automation-stitch

New config command.

Create automated workflows that define the action type taken for user-defined automation stitches.

config system automation-stitch
    edit {name}
    # Automation stitches.
        set name {string}   Name. size[35]
        set status {enable | disable}   Enable/disable this stitch.
        set trigger {string}   Trigger name. size[35] - datasource(s): system.automation-trigger.name
        config action
            edit {name}
            # Action names.
                set name {string}   Action name. size[64] - datasource(s): system.automation-action.name
            next
        config destination
            edit {name}
            # Serial number/HA group-name of destination devices.
                set name {string}   Destination name. size[64] - datasource(s): system.automation-destination.name
            next
    next
end

system automation-stitch

Use this command to create automated workflows that define the action type taken for user-defined automation in the Security Fabric.

When certain triggers or events takes place in the Security Fabric, predefined actions can be carried out through the use of automation. The actions can be executed in the Security Fabric root FortiGate, or relayed to the downstream FortiGates.

This feature, coupled with triggers and actions, can be used to carry out various operations such as:

  • Quarantine a device's MAC address when an indicator of compromise (IOC) is detected
  • Send an email alert when HA failover occurs
  • Send an iOS push notification to FortiExplorer when the configuration of a FortiGate in the Security Fabric changes

History

The following table shows all newly added, changed, or removed entries as of FortiOS 6.0.

Command Description

config system automation-stitch

New config command.

Create automated workflows that define the action type taken for user-defined automation stitches.

config system automation-stitch
    edit {name}
    # Automation stitches.
        set name {string}   Name. size[35]
        set status {enable | disable}   Enable/disable this stitch.
        set trigger {string}   Trigger name. size[35] - datasource(s): system.automation-trigger.name
        config action
            edit {name}
            # Action names.
                set name {string}   Action name. size[64] - datasource(s): system.automation-action.name
            next
        config destination
            edit {name}
            # Serial number/HA group-name of destination devices.
                set name {string}   Destination name. size[64] - datasource(s): system.automation-destination.name
            next
    next
end