Integration
(FNC-CAX): Configure "set allowaccess" options
If FortiNAC system is running the CentOS operating system (FNC-CA), skip this step.
Configure access for the applicable protocols using the "set allowaccess" command via the appliance CLI. Use the table below to determine which protocols to allow. For additional details regarding this command and available options, see Interface in the CLI Reference Guide.
Function |
“set allowaccess” option |
Apply to interface |
Fortinet Security Fabric communications |
fsso
|
port1 |
-
Log in to the CLI as admin and type:
show system interface
-
Confirm the “set allowaccess” command includes the required options per the table above.
In this example, “fsso” option needs to be added:
set allowaccess https-adminui ssh snmp
-
Copy the existing set allowaccess line command to buffer. Important: Ensure all protocols listed are copied. There is no “append” option.
Example output:
set allowaccess https-adminui ssh snmp
-
Modify the access list. Type:
config system interface
edit port1
<Paste set allowaccess command copied to buffer> <new option(s)>
end
end
Example:
config system interface
edit port1
set allowaccess https-adminui ssh snmp fsso
end
end
-
Review the entry to confirm the protocols were added. Type:
show system interface
-
Type
exit
to log out of the CLI.