Fortinet black logo

Administration Guide

Home FortiPAM 1.0.0 Administration Guide
1.0.0
1.3.0
1.2.0
1.1.2
1.1.1
1.1.0
1.0.3
1.0.2
1.0.1
1.0.0

HA active-passive cluster setup

HA active-passive cluster setup

An HA Active-Passive (A-P) cluster can be set up using the GUI or CLI.

This example uses the following network topology:

To set up an HA A-P cluster using the GUI:
  1. Make all the necessary connections as shown in the topology diagram.
  2. Log into one of the FortiPAM devices.
  3. Go to System > HA and set the following options:

    Mode

    Active-Passive.

    Device priority

    128 or higher.

    Group name

    Example_cluster.

    Heartbeat interfaces

    ha1 and ha2.

    Except for the device priority, these settings must be the same on all FortiPAM devices in the cluster.

  4. Leave the remaining settings on default. They can be changed after the cluster is in operation.
  5. Click OK.

    The FortiPAM negotiates to establish an HA cluster. Connectivity with the FortiPAM may be temporarily lost.

  6. Factory reset the other FortiPAM that will be in the cluster, configure GUI access, then repeat steps 1 to 5, omitting setting the device priority, to join the cluster.
To set up an HA A-P cluster using the CLI:
  1. Make all the necessary connections as shown in the topology diagram.
  2. Log into one of the FortiPAM devices.
  3. Change the host name of the FortiPAM:

    config system global

    set hostname Example1_host

    end

    Changing the host name makes it easier to identify individual cluster units in the cluster operations.

  4. Enable HA

    config system ha

    set mode active-passive

    set group-name Example_cluster

    set hbdev ha1 10 ha2 20

    end

  5. Leave the remaining settings as their default values. They can be changed after the cluster is in operation.
  6. Repeat steps 1 to 5 on the other FortiPAM devices to join the cluster, giving each device a unique hostname.
Previous
Next

HA active-passive cluster setup

An HA Active-Passive (A-P) cluster can be set up using the GUI or CLI.

This example uses the following network topology:

To set up an HA A-P cluster using the GUI:
  1. Make all the necessary connections as shown in the topology diagram.
  2. Log into one of the FortiPAM devices.
  3. Go to System > HA and set the following options:

    Mode

    Active-Passive.

    Device priority

    128 or higher.

    Group name

    Example_cluster.

    Heartbeat interfaces

    ha1 and ha2.

    Except for the device priority, these settings must be the same on all FortiPAM devices in the cluster.

  4. Leave the remaining settings on default. They can be changed after the cluster is in operation.
  5. Click OK.

    The FortiPAM negotiates to establish an HA cluster. Connectivity with the FortiPAM may be temporarily lost.

  6. Factory reset the other FortiPAM that will be in the cluster, configure GUI access, then repeat steps 1 to 5, omitting setting the device priority, to join the cluster.
To set up an HA A-P cluster using the CLI:
  1. Make all the necessary connections as shown in the topology diagram.
  2. Log into one of the FortiPAM devices.
  3. Change the host name of the FortiPAM:

    config system global

    set hostname Example1_host

    end

    Changing the host name makes it easier to identify individual cluster units in the cluster operations.

  4. Enable HA

    config system ha

    set mode active-passive

    set group-name Example_cluster

    set hbdev ha1 10 ha2 20

    end

  5. Leave the remaining settings as their default values. They can be changed after the cluster is in operation.
  6. Repeat steps 1 to 5 on the other FortiPAM devices to join the cluster, giving each device a unique hostname.
Previous
Next