Fortinet white logo
Fortinet white logo
6.0.5

Setting up the database on Amazon RDS

Setting up the database on Amazon RDS

FortiPortal requires connecting to an external MariaDB or MySQL database. Users can create their own database instance, which is accessible by FortiPortal AWS. Alternatively, use RDS on AWS. You can use AWS to deploy a database instance with RDS.

To deploy a database on AWS:
  1. From the AWS Management Console, under Services go to Database > RDS.
  2. In the dashboard, under Create database pane, select Create database to deploy a new database instance.
  3. In the Create database tab, select the following options for database settings:
    1. In Choose a database creation method, select Standard create.
    2. In Engine options, select MariaDB.
    3. From the Version dropdown, select the default version MariaDB 10.4.13.
    4. In Templates, select Production.
    5. In the Settings pane, give a name to the database instance identifier in DB cluster identifier, and specify login username and password in Master username and Master password respectively.
    6. In the Storage pane, select General Purpose SSD (gp2) from the Storage type dropdown. You can use the default Allocated storage, and select the Enable storage autoscaling checkbox in Storage autoscaling.

    7. In the Connectivity pane, select a VPC and subnet group accessible to FortiPortal from the Virtual private cloud (VPC) and Subnet group dropdowns respectively.

      For common deployment, the RDS instance is deployed within the same AWS account as the FortiPortal. You can select the default group for both options. In addition, for the same account deployment, you can select No for Public access.

    8. In the Connectivity pane, select Create new under VPC security group to create a new VPC security group, enter a name for this VPC security group in New VPC security group name, and set the Database port as TCP 3306 in Additional configuration.

      3306 is the default port for the MariaDB service.

    9. Click Create database to deploy the instance.

      Wait for the database to become available.

  4. Once the database instance is created, click on the instance to access it:
    1. In the Security group rules pane, select the newly created security group.

    2. Select inbound rules from the Inbound rules pane, and click Edit inbound rules.
    3. Select 0.0.0.0/0 as the source address, and click Save rules.

      The results show the database instance allowing inbound rules to 3306 from all sources and outbound rules from for all ports to all destinations.

Setting up the database on Amazon RDS

Setting up the database on Amazon RDS

FortiPortal requires connecting to an external MariaDB or MySQL database. Users can create their own database instance, which is accessible by FortiPortal AWS. Alternatively, use RDS on AWS. You can use AWS to deploy a database instance with RDS.

To deploy a database on AWS:
  1. From the AWS Management Console, under Services go to Database > RDS.
  2. In the dashboard, under Create database pane, select Create database to deploy a new database instance.
  3. In the Create database tab, select the following options for database settings:
    1. In Choose a database creation method, select Standard create.
    2. In Engine options, select MariaDB.
    3. From the Version dropdown, select the default version MariaDB 10.4.13.
    4. In Templates, select Production.
    5. In the Settings pane, give a name to the database instance identifier in DB cluster identifier, and specify login username and password in Master username and Master password respectively.
    6. In the Storage pane, select General Purpose SSD (gp2) from the Storage type dropdown. You can use the default Allocated storage, and select the Enable storage autoscaling checkbox in Storage autoscaling.

    7. In the Connectivity pane, select a VPC and subnet group accessible to FortiPortal from the Virtual private cloud (VPC) and Subnet group dropdowns respectively.

      For common deployment, the RDS instance is deployed within the same AWS account as the FortiPortal. You can select the default group for both options. In addition, for the same account deployment, you can select No for Public access.

    8. In the Connectivity pane, select Create new under VPC security group to create a new VPC security group, enter a name for this VPC security group in New VPC security group name, and set the Database port as TCP 3306 in Additional configuration.

      3306 is the default port for the MariaDB service.

    9. Click Create database to deploy the instance.

      Wait for the database to become available.

  4. Once the database instance is created, click on the instance to access it:
    1. In the Security group rules pane, select the newly created security group.

    2. Select inbound rules from the Inbound rules pane, and click Edit inbound rules.
    3. Select 0.0.0.0/0 as the source address, and click Save rules.

      The results show the database instance allowing inbound rules to 3306 from all sources and outbound rules from for all ports to all destinations.