Connecting to the CLI

Using its default settings, you can access the CLI from your management computer in two ways:

Secure Shell (SSH) provides both secure authentication and secure communications to the CLI. Supported SSH protocol versions, ciphers, and bit strengths include SSH version 2 with AES-128, 3DES, Blowfish, and SHA-1.

Table 4: Default settings for connecting to the CLI by SSH
Network Interface	port1
IP Address	192.168.1.99
SSH Port Number	22
Administrator Account	admin
Password


	If you are not connecting for the first time, nor have you just reset the configuration to its default state or restored the firmware, administrative access settings may have already been configured. In this case, access the CLI using the IP address, administrative access protocol, administrator account and password already configured, instead of the default settings.


	The following procedures describe connection using PuTTY software; steps may vary with other terminal emulators.

1. Using the RJ-45-to-DB-9 or null modem cable, connect your computer’s serial communications (COM) port to the FortiADC appliance’s console port.

4. In the Category tree on the left, go to Connection > Serial and configure the following:


Serial line to connect to	COM1 (or, if your computer has multiple serial ports, the name of the connected serial port)
Speed (baud)	9600
Data bits	8
Stop bits	1
Parity	None
Flow control	None

5. In the Category tree on the left, go to Session (not the sub-node, Logging) and from Connection type, select Serial.

The login prompt appears.

8. Type admin then press Enter twice. (In its default state, there is no password for the admin account.)

The CLI displays the following text, followed by a command line prompt:

You can now enter commands. To continue by updating the firmware, see “Updating the firmware”. Otherwise, to continue by setting an administrative password, see “Changing the “admin” account password”.

• a crossover Ethernet cable (if connecting directly) or straight-through Ethernet cable (if connecting through a switch or router)

• a FortiADC network interface configured to accept SSH connections (In its default state, port1 accepts SSH. You may need to connect directly first in order to configure a static route so that, later, you can connect through routers. For details, see “Adding a gateway”.)

1. On your management computer, configure the Ethernet port with the static IP address 192.168.1.2 with a netmask of 255.255.255.0.

2. Using the Ethernet cable, connect your computer’s Ethernet port to the FortiADC appliance’s port1.

Initially, the Session category of settings is displayed.

The SSH client connects to the FortiADC appliance.

The SSH client may display a warning if this is the first time you are connecting to the FortiADC appliance and its SSH key is not yet recognized by your SSH client, or if you have previously connected to the FortiADC appliance but it used a different IP address or SSH key. If your management computer is directly connected to the FortiADC appliance with no network hosts between them, this is normal.

9. Click Yes to verify the fingerprint and accept the FortiADC appliance’s SSH key. You cannot log in until you accept the key.

The CLI displays a login prompt.

10. Type admin and press Enter. (In its default state, there is no password for this account.)


	If 4 incorrect login or password attempts occur in a row, your IP address will be temporarily blacklisted from the GUI and CLI (network, not console). This is to protect the appliance from brute force login attacks. Wait 1 minute, then attempt the login again.

The CLI displays a prompt, such as: