Managing objects and dynamic objects
All objects within an ADOM are managed by a single database unique to that ADOM. Objects inside that database can include items such as addresses, services, intrusion protection definitions, antivirus signatures, web filtering profiles, etc.
Many objects now include the option to enable dynamic mapping. You can create new dynamic maps. When this feature is enabled, a table is displayed which lists the dynamic mapping information. You can also choose to add the object to groups, when available, and add tags.
When making changes to an object within the object database, changes are reflected immediately within the policy table in the GUI; no copying to the database is required. If partial install is enabled, the edited object can be pushed to all the devices that currently use it.
Dynamic objects are used to map a single logical object to a unique definition per device. Addresses, interfaces, virtual IPs, and an IP pool can all be addressed dynamically.
Not all policy and object options are enabled by default. See Display options. |
Objects and dynamic objects are managed in the Policy & Objects > Object Configurations pane (on the bottom half of the screen when dual pane is enabled). The available objects vary, depending on the specific ADOM selected.
Objects are used to define policies, and policies are assembled into policy packages that you can install on devices.
Policy packages are managed in the Policy & Objects > Policy Packages pane (on the top half of the screen when dual pane is enabled). When you view a policy in a policy package, you edit the policy by dragging objects from other columns, policies, or the object selector frame and dropping the objects in cells in the policy. For more information see Drag and drop objects.
On the Policy & Objects > Object Configuration pane, you can see whether an object is used in the Used column, and you can right-click on an object to find out where the object is used (Where Used) or to add the object to a group (Grouping). |
FortiManager objects are defined either per ADOM or at a global level.
FortiManager shows the last opened object for easy navigation. After opening an object, log off and log on in the same browser. Navigate to Policy and Objects > Object Configurations in the same ADOM. The last opened object is shown. |