Configuring fabric connector
You are required to configure the Fabric Connectors if FortiWeb-VMs are in HA Active-Passive mode. This is to notify the load balancer to distribute the traffic to the new master node when fail-over occurs.
Generating RSA key
First of all, you need to generate the RSA key that will be used for authentication when FortiWeb-VM connects to the load balancer.
- Log in to a Linux system which has installed OpenSSL.
- Open a SHELL terminal, enter the following commands:
openssl genrsa -out ./oci_api.key 2048
openssl rsa -pubout -in ./oci_api.key -out ./oci_api_pub.key
The fileoci_api.key
is the RSA private key file and the fileoci_api_pub.key
is its paired public key file.
- Log in OCI. Go to Governance and Administration > Identity > User.
- Select the proper user you wan to use.
- Click Add Public Key, copy the text in
oci_api_pub.key
file, and then paste it into the PUBLIC KEY field on the Add Public Key window. - Click Add.
Configuring Fabric Connectors
- Go to System > Config > Fabric Connectors.
- Configure the settings.
- Log in to OCI.
- Go to Governance and Administration > Identity > User.
- Click the user you want to use.
- Copy the OCID of this user.
- Log in to OCI.
- Go to Governance and Administration > Administration > Tenancy Details.
- Click the Tenancy you want to use.
- Copy the OCID of this Tenancy.
- Log in to OCI.
- Go to Governance and Administration > Identity > Compartments.
- Click the compartment that your load balancer is located in.
- Copy the OCID of this Tenancy.
- Log in to OCI.
- Go to Core Infrastructure > Networking > Load Balancers.
- Click the load balancer used for the HA cluster.
- Copy the OCID of this load balancer.
- For Commercial regions, please find the Region Identifier on this page:
https://docs.cloud.oracle.com/en-us/iaas/Content/General/Concepts/regions.htm - For Government regions, please find the Region Identifier on the following pages:
Name | Enter a name for the Fabric Connector. |
User ID |
To get the User ID: |
OCI Tenant ID |
To get the OCI tenant ID: |
OCI Compartment ID |
To get the OCI compartment ID: Note: If you don't have a compartment, you can leave this option empty. |
OCI LoadBalancer ID |
To get the OCI LoadBalancer ID: |
OCI Server Region Type |
If your OCI server region is either “US Federal Cloud with DISA Impact Level 5 Authorization Regions” or “US Government Cloud with FedRAMP Authorization Regions”, please select Government. Otherwise please select Commercial. |
OCI Server Region |
Enter the Region Identifier of your load balancer. |
Private Key | Upload the private key file you have generated when Configuring fabric connector. |
Test | Test the connectivity for your configuration. |