Security

 View Only

  • 1.  Fortigate 6.2.2 and new CPPM integration?

    Posted Nov 03, 2019 01:43 PM

    Hi there,

     

    The new FortiOS 6.2.2 has two new CPPM integrations. One is through FortiManager, and the other only required a Fortigate.

    See:

     

    https://docs.fortinet.com/document/fortigate/6.2.2/new-features/432538/fsso-dynamic-address-subtype

     

    My problem is that the documentation is missing some critical information: what API call must CPPM call on Fortigate to update the dynamic object?

     

     

    My questions:

    - Does anyone have that missing information?

    - Does Aruba plan a new Fortinet integration document updated with the new FortiOS features?

     

    Thanks



  • 2.  RE: Fortigate 6.2.2 and new CPPM integration?

    Posted Nov 03, 2019 11:46 PM

    Creating the conext server guide is in the fortimanager guide

     

    https://docs.fortinet.com/document/fortimanager/6.2.2/administration-guide/733863/creating-clearpass-connector

     

    I had a quick look and could not see a "Fabric connector" directly on a gate thgouh so you may only be able to do this fully with a manager

     

    It does give you the missing piece to setup the CPMM side using the FGT as a context server

     

    You can also send accounting proxy data from Clearpass to the gate if you just want identity with a role

     

    Regards

    J



Related Content