Fortinet white logo
Fortinet white logo

New Features

Azure Connector (Universal Connector) directly communicate with AZURE to resolve and update dynamic firewall objects on managed FortiGates 7.4.2

Azure Connector (Universal Connector) directly communicate with AZURE to resolve and update dynamic firewall objects on managed FortiGates 7.4.2

Azure Connector (Universal Connector) directly communicate with AZURE to resolve and update dynamic firewall objects on managed FortiGates.


To use the Azure Universal Connector:
  1. Enable the Universal Connector Management Extension Application (MEA) in the CLI with the following commands:

    config system docker

    set status enable

    set universalconnector enable

    end

  2. Under Management Extensions, select Universal Connector.

  3. In the Universal Connector select Create Connector and choose Azure.

  4. Configure the Azure connector.

    1. Configure the Connector Settings.

    2. Enter the FSSO Group Name.

    3. Select the Add Conditions, and click Apply.

    4. Click Add.

    5. Toggle the Status of the connector to ON, fill in a change note, and click OK.

  5. Enable the Universal Connector in Policy & Objects to enable communication between the FortiManager and Universal Connector MEA.

    1. Go to Policy & Objects > Security Fabric > Endpoint/Identity.

    2. Click Create New > Universal Connector, and toggle the status to ON.
      After a few moments the imported labels will be available as FSSO Group.

  6. Create a Dynamic type address with the selected FSSO Group.

    1. Go to Policy & Objects > Firewall Objects.

    2. Click Create New.

    3. Set the address Type as Dynamic, and choose the Fortinet Single Sign-On FSSO Sub Type.

    4. Choose the FSSO Group imported from Azure.

Azure Connector (Universal Connector) directly communicate with AZURE to resolve and update dynamic firewall objects on managed FortiGates 7.4.2

Azure Connector (Universal Connector) directly communicate with AZURE to resolve and update dynamic firewall objects on managed FortiGates 7.4.2

Azure Connector (Universal Connector) directly communicate with AZURE to resolve and update dynamic firewall objects on managed FortiGates.


To use the Azure Universal Connector:
  1. Enable the Universal Connector Management Extension Application (MEA) in the CLI with the following commands:

    config system docker

    set status enable

    set universalconnector enable

    end

  2. Under Management Extensions, select Universal Connector.

  3. In the Universal Connector select Create Connector and choose Azure.

  4. Configure the Azure connector.

    1. Configure the Connector Settings.

    2. Enter the FSSO Group Name.

    3. Select the Add Conditions, and click Apply.

    4. Click Add.

    5. Toggle the Status of the connector to ON, fill in a change note, and click OK.

  5. Enable the Universal Connector in Policy & Objects to enable communication between the FortiManager and Universal Connector MEA.

    1. Go to Policy & Objects > Security Fabric > Endpoint/Identity.

    2. Click Create New > Universal Connector, and toggle the status to ON.
      After a few moments the imported labels will be available as FSSO Group.

  6. Create a Dynamic type address with the selected FSSO Group.

    1. Go to Policy & Objects > Firewall Objects.

    2. Click Create New.

    3. Set the address Type as Dynamic, and choose the Fortinet Single Sign-On FSSO Sub Type.

    4. Choose the FSSO Group imported from Azure.