When you create an AWS connector, you are authorizing FortiADC to periodically (default 30s) get information of AWS instances and dynamically populates it in server pool configuration.
To create an AWS Connector:
- Go to Security Fabric > External Connectors.
- Click Create New.
- Under Public SDN, select AWS. The AWS screen is displayed.
- Configure the following options, and then click Save.
Name Type a name for the external connector object. Status
Toggle on to enable the external connector object.
Toggle off to disable the external connector object.
Update Interval (s)
Specify the update interval for the connector to get AWS objects and dynamically populates the information in the server pool configuration.
Access Key ID
Specify the access key ID.
Secret Access Key
Specify the secret access key.
Specify the region where your instances are deployed.
Use Metadata IAM
When FortiADC is deployed on AWS, you can assign IAM role for it to access EC2 instances and EKS objects.
After the connector is created, you can select this connector when creating a server pool. FortiADC will then get the IP addresses of the compute instances from AWS and dynamically populates the objects in server pool configuration, as shown in the following screenshots.
You can use the IP Address Type option to get the private address or public address of the instance. This option is supported only when the FortiADC is deployed on AWS.