Fortinet black logo

Administration Guide

Enable workflow mode

Enable workflow mode

Workflow mode can be enabled per ADOM or in all ADOMs at the same time.

After changing the workspace mode, your session will end, and you will be required to log back in to the FortiManager.

To enable workflow mode on all ADOMs in the GUI:
  1. Go to System Settings > Workspace.
  2. Click Workflow.
  3. Create the workflow approvals.
    1. Click Create New.
    2. Click the ADOM dropdown, and select an ADOM.
    3. Click the Approval Group # 1 dropdown, select the users who will approve changes.
    4. (Optional) Click the add (+) button to add another approval group.
    5. In the Send an Email Notification to field, select the user who will receive the email notification.
    6. (Optional) from the Mail Server dropdown, select the mail server.
    7. Click OK.
  4. Click Apply. Your session ends, and the FortiManager login screen is displayed.
To enable workflow mode per-ADOM in the GUI:
  1. Enable Per-ADOM mode.
    1. Go to System Settings > Admin > Workspace.
    2. Click Per-ADOM.
    3. Click Apply.Your session ends, and the FortiManager login screen is displayed.
  2. Log in to FortiManager, and go to System Settings > All ADOMs.
  3. Double-click an ADOM, or right-click the ADOM and select Edit. The Edit ADOM page is displayed.
  4. In the Workspace Mode area, click Workflow.
  5. In the Approval Group # 1 field, select the users who will approve changes.
  6. (Optional) Click the add (+) button to add another approval group.
  7. In the Send an Email Notification to field, select the user who will receive the email notification.

  8. (Optional) from the Mail Server dropdown, select the mail server.
  9. Click OK. Your session ends, and the FortiManager login screen is displayed.
Note

When workflow mode is enabled, Device Manager and Policy & Objects become read-only. You must lock the ADOM to create a new workflow session.

To disable workflow mode in all ADOMs in the GUI:
  1. Go to System Settings > Workspace.
  2. Click Disable.
To enable per-ADOM mode in the CLI:

config system global

set workspace-mode per-adom

end

Once per-adom is enabled, you can configure the workflow setting in the GUI.

To enable workflow mode in all ADOMs in the CLI:
  1. Go to System Settings > Dashboard.
  2. In the CLI Console widget enter the following CLI commands in their entirety:

    config system global

    set workspace-mode workflow

    end

When workspace-mode is workflow, Device Manager and Policy & Objects are read-only. You must lock the ADOM to create a new workflow session.

Enable workflow mode

Workflow mode can be enabled per ADOM or in all ADOMs at the same time.

After changing the workspace mode, your session will end, and you will be required to log back in to the FortiManager.

To enable workflow mode on all ADOMs in the GUI:
  1. Go to System Settings > Workspace.
  2. Click Workflow.
  3. Create the workflow approvals.
    1. Click Create New.
    2. Click the ADOM dropdown, and select an ADOM.
    3. Click the Approval Group # 1 dropdown, select the users who will approve changes.
    4. (Optional) Click the add (+) button to add another approval group.
    5. In the Send an Email Notification to field, select the user who will receive the email notification.
    6. (Optional) from the Mail Server dropdown, select the mail server.
    7. Click OK.
  4. Click Apply. Your session ends, and the FortiManager login screen is displayed.
To enable workflow mode per-ADOM in the GUI:
  1. Enable Per-ADOM mode.
    1. Go to System Settings > Admin > Workspace.
    2. Click Per-ADOM.
    3. Click Apply.Your session ends, and the FortiManager login screen is displayed.
  2. Log in to FortiManager, and go to System Settings > All ADOMs.
  3. Double-click an ADOM, or right-click the ADOM and select Edit. The Edit ADOM page is displayed.
  4. In the Workspace Mode area, click Workflow.
  5. In the Approval Group # 1 field, select the users who will approve changes.
  6. (Optional) Click the add (+) button to add another approval group.
  7. In the Send an Email Notification to field, select the user who will receive the email notification.

  8. (Optional) from the Mail Server dropdown, select the mail server.
  9. Click OK. Your session ends, and the FortiManager login screen is displayed.
Note

When workflow mode is enabled, Device Manager and Policy & Objects become read-only. You must lock the ADOM to create a new workflow session.

To disable workflow mode in all ADOMs in the GUI:
  1. Go to System Settings > Workspace.
  2. Click Disable.
To enable per-ADOM mode in the CLI:

config system global

set workspace-mode per-adom

end

Once per-adom is enabled, you can configure the workflow setting in the GUI.

To enable workflow mode in all ADOMs in the CLI:
  1. Go to System Settings > Dashboard.
  2. In the CLI Console widget enter the following CLI commands in their entirety:

    config system global

    set workspace-mode workflow

    end

When workspace-mode is workflow, Device Manager and Policy & Objects are read-only. You must lock the ADOM to create a new workflow session.