General FortiManager HA configuration steps

The following procedures assume that you are starting with four FortiManager units running the same firmware build and are set to the factory default configuration. The primary unit and the first backup unit are connected to the same network. The second backup units is connected to a remote network and communicates with the primary unit over the

Internet.

1. Configure the FortiManager units for HA operation:

Configuring        options

• Configure the primary unit.
• Configure the backup units.

2. Change the network configuration so that the remote backup unit and the primary unit can communicate with each other.
3. Connect the units to their networks.
4. Add basic configuration settings to the cluster:
   • Add a password for the admin administrative account. l Change the IP address and netmask of the port1 interface. l Add a default route.

Web-based Manager configuration steps

Use the following procedures to configure the FortiManager units for HA operation from the FortiManager unit Web-based Manager. Sample configuration settings are also shown.

To configure the primary unit for HA operation:

1. Connect to the primary unit Web-based Manager.
2. Go to System Settings > HA.
3. Configure HA settings.

Example HA master configuration:

4. Select Apply.
5. Power off the primary unit.

To configure the backup unit on the same network for HA operation:

1. Connect to the backup unit Web-based Manager.
2. Go to System Settings > HA.
3. Configure HA settings.

Example local backup configuration:

4. Select Apply.
5. Power off the backup unit.