|
HA override configuration:
config system ha
set override enable/disable [disabled by default]
end
To connect to the secondary's CLI from the primary (press "?" to find the ID):
exe ha manage <id> <username>
Steps to enable HA Override.
Case 1: If the Primary unit in HA Cluster has higher priority:
- Enable HA override on the primary.
config system ha
set override enable
end
- Enable HA override on the secondary.
- Connect to the secondary from the primary's CLI.
exe ha manage <id> <username>
- Enable HA override.
config system ha
set override enable
end
Case 2: If Secondary unit in HA Cluster has higher priority.
- Increase priority on Primary so that it is higher than the secondary's priority or lower secondary’s priority so that it is lower than the primary's. To increase the primary's priority:
config system ha
set priority 255
end
- Enable HA override on the primary.
config system ha
set override enable
end
- Enable HA override on the secondary.
- Connect to the secondary from the primary's CLI.
exe ha manage <id> <username>
- Enable HA override.
config system ha
set override enable
end
Steps to disable HA Override:
As override is enabled, the primary will have the highest priority already.
- Disable override on the secondary.
config system ha
set override disable
end
- Disable override on the Primary.
- Connect to the secondary from the primary's CLI.
exe ha manage <id> <username>
- Enable HA override.
config system ha
set override disable
end
Note: The FortiGate units in HA clusters must have the same override status; enabled or disabled.
Related article:
Technical Tip: FortiGate HA Primary unit selection process when override is disabled vs enabled
|
