Created on 10-03-2016 05:36 PM Edited on 11-23-2021 08:35 AM By Anonymous
Description
This article explains how allowing remote administrators to log to the Slave unit (HA) from the master unit by running the command ' # execute ha manage <ID>'.
Solution
Allow the remote administrators to log to the Slave unit, adding the link local address 169.254.0.x to the trusted hosts.
For example:
edit 'adminldad'set remote-auth enableset trusthost1 172.16.110.0 255.255.255.0set trusthost2 192.168.12.0 255.255.255.0set trusthost3 192.168.157.0 255.255.255.0set trusthost4 169.254.0.0 255.255.255.0 <----- Link local address.set trusthost5 0.0.0.0 0.0.0.0set trusthost6 0.0.0.0 0.0.0.0set trusthost7 0.0.0.0 0.0.0.0set trusthost8 0.0.0.0 0.0.0.0set trusthost9 0.0.0.0 0.0.0.0set trusthost10 0.0.0.0 0.0.0.0set ip6-trusthost1 ::/0set ip6-trusthost2 ::/0set ip6-trusthost3 ::/0set ip6-trusthost4 ::/0set ip6-trusthost5 ::/0set ip6-trusthost6 ::/0set ip6-trusthost7 ::/0set ip6-trusthost8 ::/0set ip6-trusthost9 ::/0set ip6-trusthost10 ::/0set accprofile "super_admin"set comments ''set vdom "root"unset ssh-public-key1unset ssh-public-key2unset ssh-public-key3set ssh-certificate ''set schedule ''set two-factor disableset email-to ''set sms-server fortiguardset sms-phone ''set guest-auth disableset wildcard enableset remote-group "ADMINS_FGT"set allow-remove-admin-session enableset accprofile-override disableset radius-vdom-override disablenextend
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.