Fortinet black logo

Fortinet Security Fabric/FSSO Integration

Home FortiNAC-F 7.2.0 Fortinet Security Fabric/FSSO Integration
7.2.0
7.2.0

Integration

Integration

(FNC-CAX): Configure "set allowaccess" options

If FortiNAC system is running the CentOS operating system (FNC-CA), skip this step.

Configure access for the applicable protocols using the "set allowaccess" command via the appliance CLI. Use the table below to determine which protocols to allow. For additional details regarding this command and available options, see Interface in the CLI Reference Guide.

Function

“set allowaccess” option

Apply to interface

Fortinet Security Fabric communications

fsso

port1

  1. Log in to the CLI as admin and type:

    show system interface

  2. Confirm the “set allowaccess” command includes the required options per the table above.

    In this example, “fsso” option needs to be added:

    set allowaccess https-adminui ssh snmp

  3. Copy the existing set allowaccess line command to buffer. Important: Ensure all protocols listed are copied. There is no “append” option.

    Example output:

    set allowaccess https-adminui ssh snmp

  4. Modify the access list. Type:

    config system interface

    edit port1

    <Paste set allowaccess command copied to buffer> <new option(s)>

    end

    end

    Example:

    config system interface

    edit port1

    set allowaccess https-adminui ssh snmp fsso

    end

    end

  5. Review the entry to confirm the protocols were added. Type:

    show system interface

  6. Type exit to log out of the CLI.

Previous
Next

Integration

(FNC-CAX): Configure "set allowaccess" options

If FortiNAC system is running the CentOS operating system (FNC-CA), skip this step.

Configure access for the applicable protocols using the "set allowaccess" command via the appliance CLI. Use the table below to determine which protocols to allow. For additional details regarding this command and available options, see Interface in the CLI Reference Guide.

Function

“set allowaccess” option

Apply to interface

Fortinet Security Fabric communications

fsso

port1

  1. Log in to the CLI as admin and type:

    show system interface

  2. Confirm the “set allowaccess” command includes the required options per the table above.

    In this example, “fsso” option needs to be added:

    set allowaccess https-adminui ssh snmp

  3. Copy the existing set allowaccess line command to buffer. Important: Ensure all protocols listed are copied. There is no “append” option.

    Example output:

    set allowaccess https-adminui ssh snmp

  4. Modify the access list. Type:

    config system interface

    edit port1

    <Paste set allowaccess command copied to buffer> <new option(s)>

    end

    end

    Example:

    config system interface

    edit port1

    set allowaccess https-adminui ssh snmp fsso

    end

    end

  5. Review the entry to confirm the protocols were added. Type:

    show system interface

  6. Type exit to log out of the CLI.

Previous
Next