Fortinet Document Library

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:


Table of Contents

CLI Reference

VDOM wireless controller configuration.

  config wireless-controller setting
      Description: VDOM wireless controller configuration.
      set account-id {string}
      set country [NA|AL|...]
      set duplicate-ssid [enable|disable]
      set fapc-compatibility [enable|disable]
      set wfa-compatibility [enable|disable]
      set phishing-ssid-detect [enable|disable]
      set fake-ssid-action {option1}, {option2}, ...
      config offending-ssid
          Description: Configure offending SSID.
          edit <id>
              set ssid-pattern {string}
              set action {option1}, {option2}, ...
          next
      end
      set device-weight {integer}
      set device-holdoff {integer}
      set device-idle {integer}
      set darrp-optimize {integer}
      set darrp-optimize-schedules <name1>, <name2>, ...
  end

config wireless-controller setting

Parameter Name Description Type Size
account-id FortiCloud customer account ID. string Maximum length: 63
country
duplicate-ssid Enable/disable allowing Virtual Access Points (VAPs) to use the same SSID name in the same VDOM.
enable: Allow VAPs to use the same SSID name in the same VDOM.
disable: Do not allow VAPs to use the same SSID name in the same VDOM.
option -
fapc-compatibility Enable/disable FAP-C series compatibility.
enable: Enable FAP-C series compatibility.
disable: Disable FAP-C series compatibility.
option -
wfa-compatibility Enable/disable WFA compatibility.
enable: Enable Wi-Fi Alliance Certification compatibility.
disable: Disable Wi-Fi Alliance Certification compatibility.
option -
phishing-ssid-detect Enable/disable phishing SSID detection.
enable: Enable phishing SSID detection.
disable: Disable phishing SSID detection.
option -
fake-ssid-action Actions taken for detected fake SSID.
log: Write logs for detected fake SSID.
suppress: Suppress detected fake SSID.
option -
device-weight Upper limit of confidence of device for identification (0 - 255, default = 1, 0 = disable). integer Minimum value: 0 Maximum value: 255
device-holdoff Lower limit of creation time of device for identification in minutes (0 - 60, default = 5). integer Minimum value: 0 Maximum value: 60
device-idle Upper limit of idle time of device for identification in minutes (0 - 14400, default = 1440). integer Minimum value: 0 Maximum value: 14400
darrp-optimize Time for running Dynamic Automatic Radio Resource Provisioning (DARRP) optimizations (0 - 86400 sec, default = 86400, 0 = disable). integer Minimum value: 0 Maximum value: 86400
darrp-optimize-schedules <name> Firewall schedules for DARRP running time. DARRP will run periodically based on darrp-optimize within the schedules. Separate multiple schedule names with a space.
Schedule name.
string Maximum length: 35

config offending-ssid

Parameter Name Description Type Size
ssid-pattern Define offending SSID pattern (case insensitive), eg: word, word, word, wo*rd. string Maximum length: 33
action Actions taken for detected offending SSID.
log: Generate logs for detected offending SSID.
suppress: Suppress detected offending SSID.
option -

VDOM wireless controller configuration.

  config wireless-controller setting
      Description: VDOM wireless controller configuration.
      set account-id {string}
      set country [NA|AL|...]
      set duplicate-ssid [enable|disable]
      set fapc-compatibility [enable|disable]
      set wfa-compatibility [enable|disable]
      set phishing-ssid-detect [enable|disable]
      set fake-ssid-action {option1}, {option2}, ...
      config offending-ssid
          Description: Configure offending SSID.
          edit <id>
              set ssid-pattern {string}
              set action {option1}, {option2}, ...
          next
      end
      set device-weight {integer}
      set device-holdoff {integer}
      set device-idle {integer}
      set darrp-optimize {integer}
      set darrp-optimize-schedules <name1>, <name2>, ...
  end

config wireless-controller setting

Parameter Name Description Type Size
account-id FortiCloud customer account ID. string Maximum length: 63
country
duplicate-ssid Enable/disable allowing Virtual Access Points (VAPs) to use the same SSID name in the same VDOM.
enable: Allow VAPs to use the same SSID name in the same VDOM.
disable: Do not allow VAPs to use the same SSID name in the same VDOM.
option -
fapc-compatibility Enable/disable FAP-C series compatibility.
enable: Enable FAP-C series compatibility.
disable: Disable FAP-C series compatibility.
option -
wfa-compatibility Enable/disable WFA compatibility.
enable: Enable Wi-Fi Alliance Certification compatibility.
disable: Disable Wi-Fi Alliance Certification compatibility.
option -
phishing-ssid-detect Enable/disable phishing SSID detection.
enable: Enable phishing SSID detection.
disable: Disable phishing SSID detection.
option -
fake-ssid-action Actions taken for detected fake SSID.
log: Write logs for detected fake SSID.
suppress: Suppress detected fake SSID.
option -
device-weight Upper limit of confidence of device for identification (0 - 255, default = 1, 0 = disable). integer Minimum value: 0 Maximum value: 255
device-holdoff Lower limit of creation time of device for identification in minutes (0 - 60, default = 5). integer Minimum value: 0 Maximum value: 60
device-idle Upper limit of idle time of device for identification in minutes (0 - 14400, default = 1440). integer Minimum value: 0 Maximum value: 14400
darrp-optimize Time for running Dynamic Automatic Radio Resource Provisioning (DARRP) optimizations (0 - 86400 sec, default = 86400, 0 = disable). integer Minimum value: 0 Maximum value: 86400
darrp-optimize-schedules <name> Firewall schedules for DARRP running time. DARRP will run periodically based on darrp-optimize within the schedules. Separate multiple schedule names with a space.
Schedule name.
string Maximum length: 35

config offending-ssid

Parameter Name Description Type Size
ssid-pattern Define offending SSID pattern (case insensitive), eg: word, word, word, wo*rd. string Maximum length: 33
action Actions taken for detected offending SSID.
log: Generate logs for detected offending SSID.
suppress: Suppress detected offending SSID.
option -