Remote backup configuration
Use the Remote Backup Configuration view to define the connection details used to copy database and system files to a third party (remote) server.
Database and system backups occur automatically when the Database BackUp and System Backup scheduled tasks run. The backup files are stored on the local appliance. See
Database backup/restore and System backups for more information.
The Administrator can, additionally, configure FortiNAC to place a copy of the database and system backups on a remote server for safekeeping. The backups are placed in time and date stamped files.
Files can be transferred using FTP and/or SSH protocols.
Database backup file naming convention:
FortiNAC_DataBase_BackUp_YYYY_MM_DD_HH_mm_SS_<hostname>.gz
System backup file naming convention:
<hostname>.YYYYMMDD.*.gz
Archive backup file naming convention:
MAC_RESULTS_Archive_YYYY_MM_DD_HH_mm_SS_localhost.bua.gz
RESULTS_Archive_YYYY_MM_DD_HH_mm_SS_localhost.bua.gz
TESTS_RESULTS_Archive_YYYY_MM_DD_HH_mm_SS_localhost.bua.gz
-
In the FortiNAC UI, navigate to System > Settings > System Management > Remote backup configuration.
-
Configure using the table below.
Field
Definition
Backup Timeout
Number of minutes for the backup to be created and copied to the remote server. If this time elapses before the backup is done, the process is interrupted. Be sure to select a time that is long enough for your system to complete its backup. The default is 20 minutes; however, large systems may require more time.
Number of days for local backups
The number of days to keep local backup files.
Number of days for local database backups
The number of days to keep local full database backup files.
Number of days for local archive backups
The number of days to keep local full database archive files.
Configure the applicable remote server option below.
Remote server configuration using FTP
-
Create an account on the remote FTP server to be used by FortiNAC for backup file transfer.
-
Create a folder to which FortiNAC will copy the files.
-
For instructions on completing the above tasks, consult documentation specific to the FTP application used.
-
Select the checkbox next to EnableFTP Remote Backup.
-
Configure using the table below.
Field
Definition
Server
IP address of the remote server.
User Name
User Name required for write access to the server.
Password
Password required for write access to the server.
Remote Path
The directory path where the remote backup files will be placed. This directory must exist on the server.
-
Save Settings.
Validate
-
Navigate to System > Scheduler.
-
Highlight the Database Backup task and click Run Now.
-
Highlight the System Backup task and click Run Now.
-
Highlight the Database Archive and Purge task and click Run Now.
On the remote server, confirm the files were transferred.
Remote server configuration using SSH
The FortiNAC’s public key must be appended to the authorized_keys file in the remote server for successful SSH communication.
High Availability configurations: SSH keys for both the primary and secondary FortiNAC servers must be appended.
-
Select the checkbox next to Enable SSH Remote Backup.
-
Configure using the table below.
Field
Definition
Server
IP address of the remote server.
Remote Path
The directory path where the remote backup files will be placed. This directory must exist on the server.
-
Save Settings.
-
Select Display Public SSH Keys.
-
The Public SSH Key window appears. Copy the key displayed.
-
Click Close.
-
Associate the public key to the remote server where the backups will be stored. This process will vary depending on the product. Refer to the SSH server product documentation for instructions.
-
The format of authorized_keys file is one entry per line.
-
Do not include extra white space or characters when pasting the key.
-
Validate
-
Click Test SSH Connection to verify SSH communication with the remote server.
-
Once successfully tested, navigate to System > Scheduler.
-
Highlight the Database Backup task and click Run Now.
-
Highlight the System Backup task and click Run Now.
-
Highlight the Database Archive and Purge task and click Run Now.
-
On the remote server, confirm the files were transferred.
Remote server configuration using Secure FTP Remote Backup (SFTP)
-
Select the checkbox next to Enable Secure FTP Remote Backup.
-
Configure using the table below.
Field
Definition
Server
IP address of the remote server.
Remote Path
The directory path where the remote backup files will be placed. This directory must exist on the server.
-
Save Settings.
-
Select Display Public SSH Keys.
-
The Public SSH Key window appears. Copy the key
-
Click Close.
-
Associate the public key to the remote server where the backups will be stored. This process will vary depending on the product. Refer to the SSH server product documentation for instructions.
|
The format of authorized_keys file is one entry per line. Do not include extra white space or characters when pasting the key. |
Validate
-
Click Test SFTP Connection to verify communication with the remote server.
-
Once successfully tested, navigate to System > Scheduler.
-
Highlight the Database Backup task and click Run Now.
-
Highlight the System Backup task and click Run Now.
-
Highlight the Database Archive and Purge task and click Run Now.
-
On the remote server, confirm the files were transferred.