Need assistance for backup the configuration from fortimanager
Hi Team, I
Could you please help me take the backup from fortimanager to windows ftp server.
We have integrared around 100 fortigate devices.
I was tried the below config......
config system backup all-settings
set status enable
set server " 10.207.242.78"
set user " ramesh"
set directory " Logs"
set week_days monday tuesday wednesday thursday friday saturday sunday
set time " 10:45:00"
set protocol ftp
set passwd ENC 9ZMwWgz5fW9SpkSu75P/+fc/X2edqzwRngu9KB6jIDV5mxx6+iI+Gy/r3atlWZKhuV0bXpxqx13saUZSIS57c k1kXfjV2O961VRyNe5JxFFKpIz4
from you site comes a little bit too less information which means no addtional information where you problem is?
If I look to the script I would say should work because I do have exact the same config and works out of the box. The only thing is probably the directory which means if this directory Logs is in root ftp server it should be probably configured as " /Logs" . But again very view information as example:
- Does FortiManager really connect to FTP server (have a look to the logs of FTP Server)
- If yes will be authentication done correctly
- If no why does not connect (between a FW or whatever)
- If yes is within the logs of FTP any error etc.
What could also be is:
- If your FTP server is not using passive FTP it could be an issue. For testing activate passive FTP. If I remember correctly FortiManager FTP client is requesting passive FTP.
Again all this stuff can be verified within the logs of FTP server. Please have a look and analyse.
hope this helps
Thanks for your revert.
I checked with /Logs and still it is not connecting.
Please clarify me if we required to configure ADOMS in backup mode. In our network we have configured as normal ADOM.
In FTP server we are getting the logs like, sessions closed by peer.
Getting authentication failure error in Fortimanager.
Please let me know how to check and configure the FTP as passive FTP server.
Thanks in advance.
sorry can not help...Unix guy :) Check you FTP server config!
If you ask me I would say the error message is indicating:
- You are not allow to access this FTP server because your IP/Subnet is not allowed to get to this FTP server
Probably you have to implement a ACL or a config that this IP from FMG is allowed to access this server.
hope this helsp
This would be a configuration change you need to make on the FTP server. You need to ensure the username/password is the same both on the FTP server and on the FortiManager. Also you need to ensure the user on the FTP server has write access to the default folder.
If you correct this, it should work fine. I use this feature myself.
Sean Toomey, CISSP FCNSP
Consulting Security Engineer (CSE)
FORTINETâ€” High Performance Network Security
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.