Fortinet black logo

Administration Guide

Authorizing devices

Authorizing devices

You can enable central management by using the operating system for supported units. For example, in FortiOS, you can enable central management for the FortiGate unit by adding the IP address of the FortiManager unit. When central management is enabled, the device is displayed on the FortiManager GUI in the root ADOM on the Device Manager pane in the Unauthorized Devices list.

In FortiManager, you must authorize devices before you can use FortiManager to manage them. FortiManager cannot manage unauthorized devices.

When ADOMs are enabled, you can assign the device to an ADOM. When authorizing multiple devices at one time, they are all added to the same ADOM.

Note

By default, FortiManager expects you to use the default admin account with no password. If the default admin account is no longer usable, or you have changed the password, the device authorization process fails. If the device authorization fails, delete the device from FortiManager, and add the device again by using the Add Device wizard, where you can specify the admin login and password.

To authorize devices:
  1. In the root ADOM, go to Device Manager > Device & Groups.
  2. In the toolbar, select Table View from the dropdown menu.
  3. Click the Unauthorized Devices tree menu. The content pane displays the unauthorized devices.
  4. If necessary, select the Display Hidden Devices check box to display hidden unauthorized devices.
  5. Select the unauthorized device or devices, then click Authorize. The Authorize Device dialog box opens.

  6. If ADOMs are enabled, select the ADOM in the Add the following device(s) to ADOM list. If ADOMs are disabled, select root. The default value is None.
    Caution

    If you try to authorize devices having different firmware versions than the selected ADOM version, the system shows a Version Mismatch Warning confirmation dialog.

    If you authorize the devices in spite of the warning, the configuration syntax may not be fully supported in the selected ADOM.

  7. (Optional) In the Assign New Device Name list, type a different name for the device.
  8. (Optional) In the Assign Policy Package list, select a policy package.
  9. (Optional) In the Assign Provisioning Template list, select a profile.

    You can override some provisioning template settings by clicking the Override Profile Value button. Before you can override system template settings during authorization, you must select a system template, and you must enable overrides in the system template. See Overriding system template settings.

  10. Click OK to authorize the device or devices.

    The device or devices are authorized, and FortiManager can start managing the device or devices.

Authorizing devices

You can enable central management by using the operating system for supported units. For example, in FortiOS, you can enable central management for the FortiGate unit by adding the IP address of the FortiManager unit. When central management is enabled, the device is displayed on the FortiManager GUI in the root ADOM on the Device Manager pane in the Unauthorized Devices list.

In FortiManager, you must authorize devices before you can use FortiManager to manage them. FortiManager cannot manage unauthorized devices.

When ADOMs are enabled, you can assign the device to an ADOM. When authorizing multiple devices at one time, they are all added to the same ADOM.

Note

By default, FortiManager expects you to use the default admin account with no password. If the default admin account is no longer usable, or you have changed the password, the device authorization process fails. If the device authorization fails, delete the device from FortiManager, and add the device again by using the Add Device wizard, where you can specify the admin login and password.

To authorize devices:
  1. In the root ADOM, go to Device Manager > Device & Groups.
  2. In the toolbar, select Table View from the dropdown menu.
  3. Click the Unauthorized Devices tree menu. The content pane displays the unauthorized devices.
  4. If necessary, select the Display Hidden Devices check box to display hidden unauthorized devices.
  5. Select the unauthorized device or devices, then click Authorize. The Authorize Device dialog box opens.

  6. If ADOMs are enabled, select the ADOM in the Add the following device(s) to ADOM list. If ADOMs are disabled, select root. The default value is None.
    Caution

    If you try to authorize devices having different firmware versions than the selected ADOM version, the system shows a Version Mismatch Warning confirmation dialog.

    If you authorize the devices in spite of the warning, the configuration syntax may not be fully supported in the selected ADOM.

  7. (Optional) In the Assign New Device Name list, type a different name for the device.
  8. (Optional) In the Assign Policy Package list, select a policy package.
  9. (Optional) In the Assign Provisioning Template list, select a profile.

    You can override some provisioning template settings by clicking the Override Profile Value button. Before you can override system template settings during authorization, you must select a system template, and you must enable overrides in the system template. See Overriding system template settings.

  10. Click OK to authorize the device or devices.

    The device or devices are authorized, and FortiManager can start managing the device or devices.