Enhance Security Fabric configuration for FortiSandbox Cloud
Creating an instance of FortiSandbox on FortiCloud can be configured from the Fabric Connectors page in the GUI. In the Cloud Sandbox Settings, you can choose between connecting to FortiGate Cloud or FortiSandbox Cloud. Connecting to FortiSandbox Cloud will automatically use the cloud user ID of the FortiGate to connect to the correct FortiSandbox Cloud account.
Requirements
The following items are required to initialize FortiSandbox Cloud:
- A FortiCloud premium account.
- A valid FSAC contract on the FortiGate. To view contract information in the CLI, enter
diagnose test update info
. TheUser ID
at the end of the output lets FortiCloud to know which FortiSandbox Cloud account the FortiGate is connected to.
FortiSandbox Cloud requires the following licenses:
- FortiCloud premium license
- FortiSandbox Cloud entitlement
- FortiGate license (register the FortiGate on the same account as the FortiCloud license)
To configure FortiSandbox Cloud in the GUI:
- Go to Security Fabric > Fabric Connectors and double-click the Cloud Sandbox card.
- Set Status to Enable.
- For Type, select FortiSandbox Cloud.
If the FortiSandbox Cloud option is grayed out or not visible, enter the following in the CLI:
config system global set gui-fortigate-cloud-sandbox enable end
- Click OK.
To configure FortiSandbox Cloud in the CLI:
config system fortisandbox set status enable set forticloud enable set server "fortisandboxcloud.com" end
To switch from Cloud Sandbox to FortiSandbox in the Security Fabric:
- Go to Security Fabric > Fabric Connectors and double-click the Cloud Sandbox card.
- Set Status to Disable.
- Click OK.
- In the CLI, enter the following.
config system fortisandbox set status enable set forticloud disable set server <address> end
The FortiSandbox card is now visible in the Other Fortinet Products section.