Description
Address objects from external connectors that are learned by FortiManager are synchronized to FortiGate.
These objects can be grouped together with the FortiGate CLI to simplify selecting connector objects in the FortiGate GUI.
This article describes how to create multiple groups.
Note.
This option is only available for objects that are synchronized from FortiManager.
Scope
For version 6.4 and 6.4.2.
Solution
To add an object to a connector group.
Objects learned by the FortiManager from an Aruba ClearPass device are synchronized to the FortiGate.
Some of the objects are then added to a group called ClearPass to make them easier to find in the object list when creating a firewall policy.
Address objects from external connectors that are learned by FortiManager are synchronized to FortiGate.
These objects can be grouped together with the FortiGate CLI to simplify selecting connector objects in the FortiGate GUI.
This article describes how to create multiple groups.
Note.
This option is only available for objects that are synchronized from FortiManager.
Scope
For version 6.4 and 6.4.2.
Solution
To add an object to a connector group.
# config user adgrpExample.
edit <object_name>
set server-name "FortiManager"
set connector-source <group_name>
next
end
Objects learned by the FortiManager from an Aruba ClearPass device are synchronized to the FortiGate.
Some of the objects are then added to a group called ClearPass to make them easier to find in the object list when creating a firewall policy.
Prior to being grouped, the synchronized objects are listed under the FortiManager heading in the object lists.
To add some of the objects to a group.
# config user adgrpThe objects are now listed under the ClearPass heading.
edit "cp_test_FSSOROLE"
set server-name "FortiManager"
set connector-source "ClearPass"
next
edit "cp_test_[AirGroup v2]"
set server-name "FortiManager"
set connector-source "ClearPass"
next
end
