Fortinet black logo

New Features

7.2.0
7.4.0
7.2.0
7.0.0
6.4.0
6.2.0

Remove split-task VDOMs and add a new administrative VDOM type

Remove split-task VDOMs and add a new administrative VDOM type

When a virtual domain (VDOM) is set to multi VDOM mode, individual VDOMs can be configured as an administrative or traffic type. When the VDOM type is set to Admin, the VDOM is used for management purposes only. Administrative users can log in to the FortiGate using SSH, HTTPS, and so on but traffic cannot pass through. When VDOM type is set to Traffic, the VDOM can pass traffic like regular VDOMs.

Note

Only one administrative VDOM can exist at a time and cannot be set on a FortiWifi. A VDOM cannot be an administrative type and in transparent mode at the same time.

The multi VDOM is more flexible than split-task VDOM mode. Upon upgrade, if a FortiGate is in split-task VDOM mode, it will be converted to multi VDOM mode. The FG-traffic VDOM will become a traffic VDOM. The root VDOM will become an administrative VDOM.

To configure an administrative VDOM in the GUI:

  1. Enable virtual domains:

    1. Go to System > Settings and enable Virtual Domains in the System Operation Settings section.

    2. Click OK in the confirmation pane.

    3. Enter your Username and Password to log in. Virtual domains are enabled.

  2. Create an administrative VDOM:

    1. Go to System > VDOM and click Create New.

    2. Enter a Virtual Domain name and set the Type to Admin.

    3. Click OK.

    4. Click OK in the confirmation pane.

      The administrative VDOM is created.

To configure the VDOM type in the CLI:
config system settings
    set vdom-type {traffic | admin}
end
Previous
Next

Remove split-task VDOMs and add a new administrative VDOM type

When a virtual domain (VDOM) is set to multi VDOM mode, individual VDOMs can be configured as an administrative or traffic type. When the VDOM type is set to Admin, the VDOM is used for management purposes only. Administrative users can log in to the FortiGate using SSH, HTTPS, and so on but traffic cannot pass through. When VDOM type is set to Traffic, the VDOM can pass traffic like regular VDOMs.

Note

Only one administrative VDOM can exist at a time and cannot be set on a FortiWifi. A VDOM cannot be an administrative type and in transparent mode at the same time.

The multi VDOM is more flexible than split-task VDOM mode. Upon upgrade, if a FortiGate is in split-task VDOM mode, it will be converted to multi VDOM mode. The FG-traffic VDOM will become a traffic VDOM. The root VDOM will become an administrative VDOM.

To configure an administrative VDOM in the GUI:

  1. Enable virtual domains:

    1. Go to System > Settings and enable Virtual Domains in the System Operation Settings section.

    2. Click OK in the confirmation pane.

    3. Enter your Username and Password to log in. Virtual domains are enabled.

  2. Create an administrative VDOM:

    1. Go to System > VDOM and click Create New.

    2. Enter a Virtual Domain name and set the Type to Admin.

    3. Click OK.

    4. Click OK in the confirmation pane.

      The administrative VDOM is created.

To configure the VDOM type in the CLI:
config system settings
    set vdom-type {traffic | admin}
end
Previous
Next