Fortinet strongly recommends that you password-encrypt this backup, and store it in a secure location. This backup method includes sensitive data such as your HTTPS certificates’ private keys. Unauthorized access to private keys compromises the security of all HTTPS requests using those certificates. |
Variable | Description | Default |
<backup_name> | Type the name of the backup configuration. The maximum length is 59 characters. To display the list of existing backups, type: edit ? | No default. |
config-type {full-config |cli‑config | waf-config} | Select either: • full-config — Include both the configuration file and other uploaded files, such a certificate and error page files, in the backup. • cli-config — Include only the configuration file in the backup. • waf-config — Include only the web protection profiles in the backup. | cli-config |
encryption {enable | disable} | Enable to encrypt the backup file using 128-bit AES and a password. Caution: Unlike when downloading a backup from the web UI to your computer, this does include all certificates and private keys. Fortinet strongly recommends that you password-encrypt this backup, and store it in a secure location. | disable |
encryption-passwd <password_str> | Type the password that will be used to encrypt the backup file. This field appears only if you enable encryption {enable | disable}. | |
ftp-auth {enable | disable} | Enable if the server requires that you provide a user name and password for authentication, rather than allowing anonymous connections. When enabled, you must also configure ftp-user <user_str> and ftp-passwd <password_str>. Disable for FTP servers that allow anonymous uploads. | disable |
ftp-user <user_str> | Type the user name that the FortiWeb appliance will use to authenticate with the server. The maximum length is 127 characters. This variable is not available unless ftp-auth is enable. | No default. |
ftp-passwd <password_str> | Type the password corresponding to the account specified in ftp-user <user_str>. The maximum length is 127 characters. This variable is not available unless ftp-auth is enable. | No default. |
ftp-dir "<directory-path_str>" | Type the directory path on the server where you want to store the backup file. The maximum length is 127 characters. | No default. |
ftp-server {<server_ipv4> | <server_fqdn>} | Type either the IP address or fully qualified domain name (FQDN) of the server. The maximum length is 127 characters. | No default. |
protocol-type {ftp | sftp} | Select whether to connect to the server using FTP or SFTP. | ftp |
schedule_type {now | days} | Select one of the schedule types: • now — Use this to initiate the FTP backup immediately upon ending the command sequence. • days — Enter this to allow you to set days and a time to run the backup automatically. You must also configure schedule_days and schedule_time. | now |
schedule_days {sun mon tue wed thu fri sat} | Select one or more days of the week when you want to run a periodic backup. Separate each day with a blank space. For example, to back up the configuration on Monday and Friday, type: set schedule_days mon,fri This command is available only if schedule_type is days. | No default. |
schedule_time <time_str> | Type the time of day to run the backup. The time format is hh:mm, where: • hh is the hour according to a 24-hour clock • mm is the minute This command is available only if schedule_type is days. | 00:00 |