FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Jackie_T
Staff
Staff
Article Id 209017
Description

This article provides information on how to SSH access to FortiGate CLI on AWS with the key pair using Putty.

Scope

Prepare the private key used by FortiGate EC2 instance.

Configure Putty to use the private key for authentication.

Solution

1). First,  Prepare the private key from AWS which is used by the instance during the initial run. The private key is downloaded when one first created it.

 

2). On AWS console, go to EC2 > Instances, select the instance (FortiGate). On the details tab, look for 'Key pair name' to identify the key pair being used. For example:

 

Jackie_T_0-1649649721609.png

 

3). There are 2 format of the key – '.pem' and '.ppk'.

 

4). For Putty, '.ppk' format is mandatory. If the key downloaded previously is in '.pem' format, then one has to convert to the right format using Puttygen by refer to below guide:

 

https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/putty.html

 

5). Once the '.ppk' ready, run Putty.

 

6). For hostname/IP , put in the public IP of the FortiGate (this will be the elastic IP associated with the instance). User can check for this under EC2 > Instances on AWS console, under Elastic IP column.

 

7). Once the hostname/IP has been setup, go to SSH on the left side column on Putty.

 

8). Expand it and select 'Auth'

 

 

Jackie_T_1-1649649744677.png

 

9). Under 'Private key file for authentication:', browse and select the .ppk file.

 

10). Then select 'Open'.

 

11). The login will be prompt. Once the username keyed in for the instance, authenticate with the private key and login will be successful.

 

Jackie_T_2-1649649761727.png

 

Contributors