system automation-stitch
Use this command to create automated workflows that define the action type taken for user-defined automation in the Security Fabric.
When certain triggers or events takes place in the Security Fabric, predefined actions can be carried out through the use of automation. The actions can be executed in the Security Fabric root FortiGate, or relayed to the downstream FortiGates.
This feature, coupled with triggers and actions, can be used to carry out various operations such as:
- Quarantine a device's MAC address when an indicator of compromise (IOC) is detected
- Send an email alert when HA failover occurs
- Send an iOS push notification to FortiExplorer when the configuration of a FortiGate in the Security Fabric changes
History
The following table shows all newly added, changed, or removed entries as of FortiOS 6.0.
Command | Description |
---|---|
config system automation-stitch |
New Create automated workflows that define the action type taken for user-defined automation stitches. |
config system automation-stitch edit {name} # Automation stitches. set name {string} Name. size[35] set status {enable | disable} Enable/disable this stitch. set trigger {string} Trigger name. size[35] - datasource(s): system.automation-trigger.name config action edit {name} # Action names. set name {string} Action name. size[64] - datasource(s): system.automation-action.name next config destination edit {name} # Serial number/HA group-name of destination devices. set name {string} Destination name. size[64] - datasource(s): system.automation-destination.name next next end