# Fortinet (FortiGate Secure Wireless Controller) ## FortiGate Secure Wireless Controller setup You need to manually create the WLAN/s you want to use to run Cusna on. 1. Go to **WiFi and Switch Controller** (or simply **WiFi Controller**, depending on your licenses) > **SSIDs** and edit an existing SSID you want to use or create a new one. 2. In **Security Mode**, select **WPA2 Personal**. 3. In **Pre-shared Key**, select **Multiple** as the **PSK mode** 4. Next, you need to select at least one **MPSK Profile** (otherwise the SSID will switch back automatically to Single PSK mode once you save the configuration).\ You can select any existing MPSK Profile if you have one, Cusna will create a new one automatically once integrated with your Fortigate and assign it to this SSID. \ If you don't have any existing MPSK Profile, create a new one: 1. In the MPSK Profile dropdown, select **+ Create** . The **New MPSK Profile** dialog appears.\ ![](/files/PVXPSmkPC4eu3BenjI29) 2. Enter any value in the **Name** file, such as "Default" 3. In the **MPSK Group list** section, click **+Add** and select Create Group. The **New MPSK Group** dialog appears.\ ![](/files/JBAoU4zqWRKWV364rJd1) 4. Enter any value in the **Name** file, such as "Default" 5. In the **MPSK Key list** section, click **Create Key** and select Create Group. The **New MPSK Key** dialog appears.\ ![](/files/9j6fUjK6m57WKRNrdzX3) 6. Enter any value for **Name** and a 10 character string for **Pre-shared key**. 7. Save all the configurations until you go back to the list of SSIDs. {% hint style="danger" %} After the initial setup, the MPSK Profile assigned to the SSID will be managed automatically by Cusna. Do Not change the MPSK Profile manually on this SSID. {% endhint %} {% hint style="warning" %} You Fortigate controller need to have a valid SSL certificate and be reachable over the internet at a specific hostname or static IP address. If you encounter any certificate related error during setup, please contact our support. {% endhint %} ## Cusna setup Log in your Fortinet system with admin access. Click **System** > **Administrator**. Click the button **+ Create New** and select **REST API Admin**. ![](/files/mVQbsCgM8SWVlQZln225) In the **New Rest API Admin** page, enter a **Username**. Then select or create a new **Administrator Profile** with the **Read/Write** permissions for **WiFi & Switch** Access Control category. Disable **PKI Group**. Enable **CORS Allow Origin** and enter **** Click **OK** and copy the **API Key** shown in the right panel. The API Key will be shown only once, so make sure to copy it on a note. ![](/files/QBXnW0Jeum9ulyBKQ09d) Open your Cusna dashboard and go to Setting, expand the WiFi setup card, select **Fortinet** and in the setup panel enter your: * **hostname** (eg. 207.45.23.34 or fortigate.example.com) * **port** (e.g. 45) * **API** Key
Click **Setup**. If any of the provided integration attributes are wrong, you'll get an error. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.cusna.io/wifi-integration/summary-of-supported-wifi-vendors/fortinet-fortigate-secure-wireless-controller.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.