system csf
You can configure Fabric Connector to use Single Sign-On (SSO) to log in to FortiWeb with FortiGate's administrator accounts.
Use this command to configure the Fabric Connector on FortiWeb. Single sign-on with FortiGate requires configurations on FortiGate as well. For how to configure SSO with FortiGate, see Fabric Connector: Single Sign On with FortiGate.
To use this command, your administrator account’s access control profile must have either w
or rw
permission to the sysgrp
area. For details, see Permissions.
Syntax
config system csf
set configuration-sync {enable | disable}
set upstream-ip <fortigate ip>
set upstream-port <port for fabric>
set management-ip <fortiweb mgmt ip>
setmanagement-port <port for fortiweb mgmt>
end
Variable |
Description |
Default |
---|---|---|
Enable or disable the Fabric Connector. | disable
|
|
It's recommended to set it as |
Enable
|
|
The FortiGate IP. If you have multiple FortiGate appliances and they are deployed as Fabric net, enter the IP address of the Fabric root. This IP would be the IP of the interface that is selected in the Allow other Security Fabric devices to join field on the FortiGate. |
0.0.0.0
|
|
Use the default 8013. | 8013
|
|
Enter FortiWeb GUI management IP. | No default
|
|
Enter FortiWeb GUI management HTTPS port. This must be the same as the setting of the HTTPS in System > Admin > Settings in FortiWeb | No default
|