Fortinet black logo

CLI Reference

Home FortiMail 7.4.2 CLI Reference

cloud-api account

7.4.2
7.4.2
7.4.1
7.4.0
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.7
7.0.6
7.0.5
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.4.8
6.4.7
6.4.6
6.4.5
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0
6.2.0
6.0.4
6.0.3
6.0.1
6.0.0
5.4.9
5.4.8
5.4.6
5.4.5
5.4.4
5.4.3
5.4.0
Copy Link
Copy Doc ID 66ae5ae2-c1e5-11ee-8c42-fa163e15d75b:839015
Download PDF

cloud-api account

Use this command to connect to Microsoft 365 and Google Workspace to access the user mailboxes. You must have domain administrator privileges to access Microsoft 365 or Google Workspace.

Syntax

config cloud-api account

edit <profile_name>

config user-filter

edit <name>

set ad-group-attr {custom | displayname | mail}

set ad-group-attr-name <string>

set ad-group-attr-value <string>

set email-group <group_name>

set ldap-group <string>

set ldap-profile <profile_name>

set pattern <string>

set status {enable | disable}

set type {ms365 | gmail}

next

end

set application-id <string>

set application-secret <password>

set description <string>

set realtime-scan-status {enable | disable}

set service-endpoint {china | germany | global | us-dod | us-gov}

set status {enable | disable}

set tenant <password>

set type {ms365 | gmail}

end

Variable

Description

Default

<profile_name>

Enter the name of the account profile.

ad-group-attr {custom | displayname | mail}

Note: This option is only available when type is set to ad-group.

Select the Azure AD group attribute.

displayname

ad-group-attr-name <string>

Note: This option is only available when type is set to ad-group and ad-group-attr is set to custom.

Enter the custom Azure AD group attribute name.

ad-group-attr-value <string>

Note: This option is only available when type is set to ad-group.

Enter the Azure AD group attribute value.

application-id <string>

Enter the application ID.

application-secret <password>

Enter the application secret or password.

description <string>

Enter a brief description of the account.

email-group <group_name>

Note: This option is only available when type is set to email-group.

Select an email group.

ldap-group <string>

Note: This option is only available when type is set to ldap-group.

Enter the LDAP group name.

ldap-profile <profile_name>

Note: This option is only available when type is set to ldap-group.

Select an LDAP group profile.

pattern <string>

Note: This option is only available when type is set to regex or wildcard.

Enter the user pattern.

realtime-scan-status {enable | disable}

Enable or disable real-time scan.

enable

service-endpoint {china | germany | global | us-dod | us-gov}

Select a regional endpoint appropriate to your geographical location.

global

status {enable | disable}

Enable or disable this user filter.

disable

status {enable | disable}

Enable or disable this account.

enable

tenant <password>

Enter the Microsoft 365 tenant credentials.

type {ms365 | gmail}

Select whether the account is Microsoft 365 or Google Workspace.

ms365

type {ad-group | email-group | imported-user | ldap-group | regex | wildcard}

Define the filter type as one of the following:

  • ad-group: Azure AD group.

  • email-group: Email group.

  • imported-user: Imported internal or external user.

  • ldap-group: LDAP group.

  • regex: User as regular expression.

  • wildcard: User as wildcard.

wildcard
Previous
Next

cloud-api account

Use this command to connect to Microsoft 365 and Google Workspace to access the user mailboxes. You must have domain administrator privileges to access Microsoft 365 or Google Workspace.

Syntax

config cloud-api account

edit <profile_name>

config user-filter

edit <name>

set ad-group-attr {custom | displayname | mail}

set ad-group-attr-name <string>

set ad-group-attr-value <string>

set email-group <group_name>

set ldap-group <string>

set ldap-profile <profile_name>

set pattern <string>

set status {enable | disable}

set type {ms365 | gmail}

next

end

set application-id <string>

set application-secret <password>

set description <string>

set realtime-scan-status {enable | disable}

set service-endpoint {china | germany | global | us-dod | us-gov}

set status {enable | disable}

set tenant <password>

set type {ms365 | gmail}

end

Variable

Description

Default

<profile_name>

Enter the name of the account profile.

ad-group-attr {custom | displayname | mail}

Note: This option is only available when type is set to ad-group.

Select the Azure AD group attribute.

displayname

ad-group-attr-name <string>

Note: This option is only available when type is set to ad-group and ad-group-attr is set to custom.

Enter the custom Azure AD group attribute name.

ad-group-attr-value <string>

Note: This option is only available when type is set to ad-group.

Enter the Azure AD group attribute value.

application-id <string>

Enter the application ID.

application-secret <password>

Enter the application secret or password.

description <string>

Enter a brief description of the account.

email-group <group_name>

Note: This option is only available when type is set to email-group.

Select an email group.

ldap-group <string>

Note: This option is only available when type is set to ldap-group.

Enter the LDAP group name.

ldap-profile <profile_name>

Note: This option is only available when type is set to ldap-group.

Select an LDAP group profile.

pattern <string>

Note: This option is only available when type is set to regex or wildcard.

Enter the user pattern.

realtime-scan-status {enable | disable}

Enable or disable real-time scan.

enable

service-endpoint {china | germany | global | us-dod | us-gov}

Select a regional endpoint appropriate to your geographical location.

global

status {enable | disable}

Enable or disable this user filter.

disable

status {enable | disable}

Enable or disable this account.

enable

tenant <password>

Enter the Microsoft 365 tenant credentials.

type {ms365 | gmail}

Select whether the account is Microsoft 365 or Google Workspace.

ms365

type {ad-group | email-group | imported-user | ldap-group | regex | wildcard}

Define the filter type as one of the following:

  • ad-group: Azure AD group.

  • email-group: Email group.

  • imported-user: Imported internal or external user.

  • ldap-group: LDAP group.

  • regex: User as regular expression.

  • wildcard: User as wildcard.

wildcard
Previous
Next