Disable all cloud communication
All cloud communication can be disabled with the following CLI command:
config system global set cloud-communication disable end
The forticldd
and updated
daemons are shutdown, and multiple settings are disabled.
The following settings are automatically changed:
config system global set endpoint-control-fds-access disable set fds-statistics disable unset fgd-alert-subscription set security-rating-result-submission disable end config system central-management set type none set include-default-servers disable end config system fortiguard set service-account-id '' set auto-join-forticloud disable set sandbox-region '' set antispam-force-off enable set outbreak-prevention-force-off enable set webfilter-force-off enable end config system email-server set server '' end config system ntp set ntpsync disable end config system autoupdate push-update set status disable end config system autoupdate schedule set status disable end config system autoupdate tunneling set status disable end config log fortiguard setting set status disable end config vpn ocvpn set status disable end config log fortiguard override-setting set override disable end
To reenable cloud communications, each individual setting must be changed after running the following CLI command:
config system global set cloud-communication enable end
For example, to reenable automatically connecting and logging in to FortiCloud:
config system global set cloud-communication enable end config system fortiguard set auto-join-forticloud enable end