Fortinet white logo
Fortinet white logo

CLI Reference

user exchange

Configure MS Exchange server entries.

  config user exchange
      Description: Configure MS Exchange server entries.
      edit <name>
          set server-name {string}
          set domain-name {string}
          set username {string}
          set password {password}
          set ip {ipv4-address-any}
          set connect-protocol [rpc-over-tcp|rpc-over-http|...]
          set auth-type [spnego|ntlm|...]
          set auth-level [connect|call|...]
          set http-auth-type [basic|ntlm]
          set ssl-min-proto-version [default|SSLv3|...]
          set auto-discover-kdc [enable|disable]
          set kdc-ip <ipv41>, <ipv42>, ...
      next
  end

config user exchange

Parameter Name Description Type Size
server-name MS Exchange server hostname. string Maximum length: 63
domain-name MS Exchange server fully qualified domain name. string Maximum length: 79
username User name used to sign in to the server. Must have proper permissions for service. string Maximum length: 64
password Password for the specified username. password Not Specified
ip Server IPv4 address. ipv4-address-any Not Specified
connect-protocol Connection protocol used to connect to MS Exchange service.
rpc-over-tcp: Connect using RPC-over-TCP. Use for MS Exchange 2010 and earlier versions. Supported in MS Exchange 2013.
rpc-over-http: Connect using RPC-over-HTTP. Use for MS Exchange 2016 and later versions. Supported in MS Exchange 2013.
rpc-over-https: Connect using RPC-over-HTTPS. Use for MS Exchange 2016 and later versions. Supported in MS Exchange 2013.
option -
auth-type Authentication security type used for the RPC protocol layer.
spnego: Negotiate authentication.
ntlm: NTLM authentication.
kerberos: Kerberos authentication.
option -
auth-level Authentication security level used for the RPC protocol layer.
connect: RPC authentication level 'connect'.
call: RPC authentication level 'call'.
packet: RPC authentication level 'packet'.
integrity: RPC authentication level 'integrity'.
privacy: RPC authentication level 'privacy'.
option -
http-auth-type Authentication security type used for the HTTP transport.
basic: Basic HTTP authentication.
ntlm: NTLM HTTP authentication.
option -
ssl-min-proto-version Minimum SSL/TLS protocol version for HTTPS transport (default is to follow system global setting).
default: Follow system global setting.
SSLv3: SSLv3.
TLSv1: TLSv1.
TLSv1-1: TLSv1.1.
TLSv1-2: TLSv1.2.
option -
auto-discover-kdc Enable/disable automatic discovery of KDC IP addresses.
enable: Enable automatic discovery of KDC IP addresses.
disable: Disable automatic discovery of KDC IP addresses.
option -
kdc-ip <ipv4> KDC IPv4 addresses for Kerberos authentication.
KDC IPv4 addresses for Kerberos authentication.
string Maximum length: 79

user exchange

Configure MS Exchange server entries.

  config user exchange
      Description: Configure MS Exchange server entries.
      edit <name>
          set server-name {string}
          set domain-name {string}
          set username {string}
          set password {password}
          set ip {ipv4-address-any}
          set connect-protocol [rpc-over-tcp|rpc-over-http|...]
          set auth-type [spnego|ntlm|...]
          set auth-level [connect|call|...]
          set http-auth-type [basic|ntlm]
          set ssl-min-proto-version [default|SSLv3|...]
          set auto-discover-kdc [enable|disable]
          set kdc-ip <ipv41>, <ipv42>, ...
      next
  end

config user exchange

Parameter Name Description Type Size
server-name MS Exchange server hostname. string Maximum length: 63
domain-name MS Exchange server fully qualified domain name. string Maximum length: 79
username User name used to sign in to the server. Must have proper permissions for service. string Maximum length: 64
password Password for the specified username. password Not Specified
ip Server IPv4 address. ipv4-address-any Not Specified
connect-protocol Connection protocol used to connect to MS Exchange service.
rpc-over-tcp: Connect using RPC-over-TCP. Use for MS Exchange 2010 and earlier versions. Supported in MS Exchange 2013.
rpc-over-http: Connect using RPC-over-HTTP. Use for MS Exchange 2016 and later versions. Supported in MS Exchange 2013.
rpc-over-https: Connect using RPC-over-HTTPS. Use for MS Exchange 2016 and later versions. Supported in MS Exchange 2013.
option -
auth-type Authentication security type used for the RPC protocol layer.
spnego: Negotiate authentication.
ntlm: NTLM authentication.
kerberos: Kerberos authentication.
option -
auth-level Authentication security level used for the RPC protocol layer.
connect: RPC authentication level 'connect'.
call: RPC authentication level 'call'.
packet: RPC authentication level 'packet'.
integrity: RPC authentication level 'integrity'.
privacy: RPC authentication level 'privacy'.
option -
http-auth-type Authentication security type used for the HTTP transport.
basic: Basic HTTP authentication.
ntlm: NTLM HTTP authentication.
option -
ssl-min-proto-version Minimum SSL/TLS protocol version for HTTPS transport (default is to follow system global setting).
default: Follow system global setting.
SSLv3: SSLv3.
TLSv1: TLSv1.
TLSv1-1: TLSv1.1.
TLSv1-2: TLSv1.2.
option -
auto-discover-kdc Enable/disable automatic discovery of KDC IP addresses.
enable: Enable automatic discovery of KDC IP addresses.
disable: Disable automatic discovery of KDC IP addresses.
option -
kdc-ip <ipv4> KDC IPv4 addresses for Kerberos authentication.
KDC IPv4 addresses for Kerberos authentication.
string Maximum length: 79