Fortinet black logo

Administration Guide

Enabling and disabling the ADOM feature

Enabling and disabling the ADOM feature

By default, ADOMs are disabled. Enabling and configuring ADOMs can only be done by super user administrators.

When ADOMs are enabled, the Device Manager, FortiView, Log View, Incidents & Events, and Reports panes are displayed per ADOM. You select the ADOM you need to work in when you log into the FortiAnalyzer unit. See Switching between ADOMs.

ADOMs must be enabled to support FortiMail and FortiWeb logging and reporting. When a FortiMail or FortiWeb device is authorized, the device is added to the respective default ADOM and is visible in the left-hand tree menu.

FortiGate and FortiCarrier devices cannot be grouped into the same ADOM. FortiCarrier devices are added to a specific default FortiCarrier ADOM.

To enable the ADOM feature:
  1. Log in to the FortiAnalyzer as a super user administrator.
  2. Go to System Settings > Dashboard.
  3. In the System Information widget, toggle the Administrative Domain switch to ON.

    You will be automatically logged out of the FortiAnalyzer and returned to the log in screen.

To disable the ADOM feature:
  1. Remove all the devices from all non-root ADOMs. That is, add all devices to the root ADOM.
  2. Delete all non-root ADOMs. See Deleting ADOMs.

    Only after removing all the non-root ADOMs can ADOMs be disabled.

  3. Go to System Settings > Dashboard.
  4. In the System Information widget, toggle the Administrative Domain switch to OFF.

    You will be automatically logged out of the FortiAnalyzer and returned to the log in screen.

The ADOMs feature cannot be disabled if ADOMs are still configured and have managed devices in them.

Enabling and disabling the ADOM feature

By default, ADOMs are disabled. Enabling and configuring ADOMs can only be done by super user administrators.

When ADOMs are enabled, the Device Manager, FortiView, Log View, Incidents & Events, and Reports panes are displayed per ADOM. You select the ADOM you need to work in when you log into the FortiAnalyzer unit. See Switching between ADOMs.

ADOMs must be enabled to support FortiMail and FortiWeb logging and reporting. When a FortiMail or FortiWeb device is authorized, the device is added to the respective default ADOM and is visible in the left-hand tree menu.

FortiGate and FortiCarrier devices cannot be grouped into the same ADOM. FortiCarrier devices are added to a specific default FortiCarrier ADOM.

To enable the ADOM feature:
  1. Log in to the FortiAnalyzer as a super user administrator.
  2. Go to System Settings > Dashboard.
  3. In the System Information widget, toggle the Administrative Domain switch to ON.

    You will be automatically logged out of the FortiAnalyzer and returned to the log in screen.

To disable the ADOM feature:
  1. Remove all the devices from all non-root ADOMs. That is, add all devices to the root ADOM.
  2. Delete all non-root ADOMs. See Deleting ADOMs.

    Only after removing all the non-root ADOMs can ADOMs be disabled.

  3. Go to System Settings > Dashboard.
  4. In the System Information widget, toggle the Administrative Domain switch to OFF.

    You will be automatically logged out of the FortiAnalyzer and returned to the log in screen.

The ADOMs feature cannot be disabled if ADOMs are still configured and have managed devices in them.