Description
This article explains how to configure SCP backup for FortiAnalyzer/FortiManager.
Scope
FortiAnalyzer.
Solution
config system certificate ssh
edit <cert-name>
set private-key "<copy from the decrypted user key you got in step f>" <----- Do not forget to have the quotes (") before and after the text. copied/pastee here.
set certificate "<copy from the content of file user-key-cert.pub>" <----- Do not forget to have the quotes (") before and after the text copied/pasted here.
end
exec backup all-settings scp <scp server ip, i.e. ip address of the linux server used above> <path/filename> <username> <cert-name>
Where username is a user account on scp server, which trusts the CA key. <cert-name> is the certificate created on FAZ in step 7 above.
To schedule scp backups configure as below:
config system backup all-settings
set status enable
set server <ip address of the linux server above>
set user <username>
set directory <backup directory on server>
set week_days monday Tuesday …
set time <time>
set protocol scp
set cert <cert-name>
end
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.