Universal Connector 1.0.0 Administration Guide
Cisco ACI connector behavior
Cisco ACI connector behavior
- When the connector is configured but disabled:
- In this case, all connectors and FortiManager configurations are still accessible and work, however, the connector does not send any groups and address (corresponding to active sessions) to FortiManager until the connector is enabled.
- If the connector was in use but is disabled, the container and FortiManager will maintain all configurations, but address information of active sessions will be removed/cleared.
- When the connector is configured and functional, but is deleted:
- All existing groups information and address information (active sessions) will be cleared from FortiManager/Connector/FSSO/FortiOS.
- If the EPGs are in use in Policy and or Address Objects, these FSSO groups will be stuck on FortiManager. Administrators will need to make sure that all the EPG groups in use should be deleted before deleting the connector.
- If the connector to Cisco APIC is lost after five minutes, action is taken based on whether the administrator has checked the Remove the address when the connector is unreachable more than 5 minutes option. This option is enabled by default, and addresses are cleared if the connection to Cisco APIC is lost for five minutes. When the checkbox is not selected, all address information is maintained until the connection is reestablished or the administrator changes the connector configuration.
Cisco ACI connector behavior
- When the connector is configured but disabled:
- In this case, all connectors and FortiManager configurations are still accessible and work, however, the connector does not send any groups and address (corresponding to active sessions) to FortiManager until the connector is enabled.
- If the connector was in use but is disabled, the container and FortiManager will maintain all configurations, but address information of active sessions will be removed/cleared.
- When the connector is configured and functional, but is deleted:
- All existing groups information and address information (active sessions) will be cleared from FortiManager/Connector/FSSO/FortiOS.
- If the EPGs are in use in Policy and or Address Objects, these FSSO groups will be stuck on FortiManager. Administrators will need to make sure that all the EPG groups in use should be deleted before deleting the connector.
- If the connector to Cisco APIC is lost after five minutes, action is taken based on whether the administrator has checked the Remove the address when the connector is unreachable more than 5 minutes option. This option is enabled by default, and addresses are cleared if the connection to Cisco APIC is lost for five minutes. When the checkbox is not selected, all address information is maintained until the connection is reestablished or the administrator changes the connector configuration.
