Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
pieciaq
New Contributor III

Missing Security Fabric Setup

Hello,

 

I notice in Security Fabric\Fabric Connectors in Core Network Security I'm missing Security Fabric Setup tab.

I'm not sure why is that. In other Fortigates FGT60E and FGT60F it is and can configure it without no problem.

Was checking Global and also root.

Device is FGT 500E 6.4.8 in HA.

It is because of Vdom enabled?

Pieciaq
Pieciaq
4 REPLIES 4
hrahuman_FTNT

Hi

 

I hope FGT 500E is managed through FortiManger, if so you will have to configure the security fabric from FortiManager.

 

https://docs.fortinet.com/document/fortimanager/6.2.0/new-features/736125/security-fabric-topology

 

 

 

-Habeeb
pieciaq
New Contributor III

Thank you for your replay!

 

FGT 500E is not managed through FortiManager but this is not the case.

Reason I need to configure Security Fabric Setup is because need to check/turn on SAML SSO on my FortiClientEMS.

So basicly need Security Fabric Setup tab on my FortiGate to configure Security Fabric SetupSAML.

In FortiGate 6.4.8 administration guide i notice this:

 

Prerequisites

  • FortiGate devices must either have VDOMs disabled or be running in split-task VDOM mode in order to be added to the Security Fabric. See Virtual Domains.
  • FortiGate devices must be operating in NAT mode.

So it is possible there is no Security Fabric Setup tab because I got multivdom enabled in my FGT500E?

Pieciaq
Pieciaq
Debbie_FTNT

Hey pieciaq,

FortiClient EMS needs to be added in the Global > Security Fabric section if you have VDOMS enabled, not in any of the VDOM Security Fabrics, at least that's how it worked for me in a lab I set up recently (FGT 7.0 though).

Debbie_FTNT_0-1649065366319.png

+++ Divide by Cucumber Error. Please Reinstall Universe and Reboot +++
pieciaq
New Contributor III

Hey Debbie_FTNT, thanks for your response,

this also not the case, I got connected EMS thru Security Fabric like You say.

But now want to enabled SAML SSO in EMS and to do it need to enabled it in FGT Security Fabric Setup, and that is what I missing, probably because of multivdom enabled in 6.4.8 version of FortiOS.

Pieciaq
Pieciaq
Labels
Top Kudoed Authors