FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
MartiskaM
Staff
Staff

Description

 

This article describes how to disable FortiGate Switch-Controller.

 

 

Scope

 

FortiGate

 

 

Solution

 

Perform the following before disabling switch-controller.

 

*** Disable 'auto-auth-extension-device' on all FortiLink interfaces.

*** Delete all managed switches.

*** Disable FortiLink on interfaces.

*** Delete all managed switches again in case any are discovered.

 

When attempting to disable switch-controller on FortiGate the below-shown error might be encountered.

 

MartiskaM_0-1655219257136.png

 

 

To disable the FortiLink follow these steps:

 

# config system interface

  show

 

After the configuration is printed look for references as depicted below.

 

MartiskaM_1-1655219257138.png

 

Once the interfaces referencing FortiLink are located,  unset this option would be needed.

In this scenario:

 

# config system interface

edit fortilink

set fortilink disable

end

 

Lastly, remove the switch-controller:

 

# config system global

set switch-controller disable

end

 

Disabling FortiLink and switch-controller will remove the capability to manage switches by FortiGate.

Contributors