Fortinet black logo

New Features

Home FortiManager 7.4.0 New Features
7.4.0
7.4.0
7.2.0
7.0.0
6.4.0
6.2.7
6.2.3
6.2.2
6.2.1
6.2.0

Support Universal Connector for FortiManager HA 7.4.2

Support Universal Connector for FortiManager HA 7.4.2

Universal Connector MEA redundancy supported by FortiManager HA.

To configure Universal Connector MEA redundancy in HA:
  1. Configure High Availability (HA) on the Primary and Secondary FortiManager
    1. On the Primary FortiManager, configure FortiManager HA in System Settings > HA.
    2. On the Secondary FortiManager, configure FortiManager HA in System Settings > HA.
    3. Verify that the cluster Status is Up.
  2. Configure the Universal Connector Management Extension Application (MEA).
    1. Enable the Universal Connector MEA in the CLI of the Primary FortiManager by entering the following commands in the CLI:

      config system docker

      set status enable

      set universalconnector enable

      end

    2. Go to Policy & Objects > Security Fabric > Endpoint/Identity > Create New and create a new connector. Set the Status toggle to On, and click OK.

    3. Go to Management Extensions > Universal Connector, and click Create Connector to create a new connector.

    4. Configure the connector's details, enable the connector, and add a filter group.

  3. Go to Policy & Objects > Firewall Objects > Addresses and create a new dynamic firewall address using the filter group from the Universal Connector.

  4. Go to the Secondary FortiManager. The Universal Connector configuration has been backed up.

    Dynamic firewall addresses have also been backed up. In the event that the Primary FortiManager fails, the Secondary FortiManager unit becomes the new Primary and assumes responsibility over resolving the IP addresses of dynamic firewall objects and pushing policies to FortiGates.

Previous
Next

Support Universal Connector for FortiManager HA 7.4.2

Universal Connector MEA redundancy supported by FortiManager HA.

To configure Universal Connector MEA redundancy in HA:
  1. Configure High Availability (HA) on the Primary and Secondary FortiManager
    1. On the Primary FortiManager, configure FortiManager HA in System Settings > HA.
    2. On the Secondary FortiManager, configure FortiManager HA in System Settings > HA.
    3. Verify that the cluster Status is Up.
  2. Configure the Universal Connector Management Extension Application (MEA).
    1. Enable the Universal Connector MEA in the CLI of the Primary FortiManager by entering the following commands in the CLI:

      config system docker

      set status enable

      set universalconnector enable

      end

    2. Go to Policy & Objects > Security Fabric > Endpoint/Identity > Create New and create a new connector. Set the Status toggle to On, and click OK.

    3. Go to Management Extensions > Universal Connector, and click Create Connector to create a new connector.

    4. Configure the connector's details, enable the connector, and add a filter group.

  3. Go to Policy & Objects > Firewall Objects > Addresses and create a new dynamic firewall address using the filter group from the Universal Connector.

  4. Go to the Secondary FortiManager. The Universal Connector configuration has been backed up.

    Dynamic firewall addresses have also been backed up. In the event that the Primary FortiManager fails, the Secondary FortiManager unit becomes the new Primary and assumes responsibility over resolving the IP addresses of dynamic firewall objects and pushing policies to FortiGates.

Previous
Next