Fortinet black logo

Administration Guide

Home FortiManager 7.2.2 Administration Guide

Creating object configurations

7.2.2
7.4.2
7.4.1
7.4.0
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.12
7.0.11
7.0.10
7.0.9
7.0.8
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.4.14
6.4.13
6.4.12
6.4.11
6.4.10
6.4.9
6.4.8
6.4.7
6.4.6
6.4.5
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0
6.2.12
6.2.11
6.2.10
6.2.9
6.2.8
6.2.7
6.2.6
6.2.6
6.2.5
6.2.3
6.2.2
6.2.1
6.2.0
6.0.12
6.0.11
6.0.10
6.0.9
6.0.8
6.0.7
6.0.6
6.0.5
6.0.4
6.0.3
6.0.2
6.0.1
6.0.0
5.6.11
5.6.10
5.6.9
5.6.8
5.6.7
5.6.6
5.6.5
5.6.4
5.6.3
5.6.2
5.6.1
5.6.0
5.4.7
5.4.6
5.4.5
5.4.4
5.4.3
5.4.2
5.4.1
5.4.0
5.2.10
5.2.7
5.2.6
5.2.4
5.2.3
5.2.2
5.2.1
5.2.0
5.0.12
5.0.11
5.0.10
5.0.9
5.0.8
5.0.7
5.0.6
5.0.5
5.0.4
5.0.3
5.0.2
4.3.8
4.3.7
4.3.6
4.3.5
4.3.4
4.3.3
4.3.2
4.3.1
4.3.0
4.2.9
4.2.8
4.2.7
4.2.6
4.2.5
4.2.4
4.2.3
4.2.2
4.2.1
4.2.0
4.1.0
4.0.3
4.0.2
4.0.1
4.0.0
Copy Link
Copy Doc ID 685e995b-337a-11ed-9d74-fa163e15d75b:240965
Download PDF

Creating object configurations

You can create new object configurations before including them in policy packages. Alternatively, you can also create policy packages using existing object configurations.

To create object configurations in Global Database:
  1. Change the ADOM to Global Database.
  2. Click Object Configurations. The Object Configuration pane shows the following object categories.
  3. Click Create New to create new objects in each category.
    • Normalized Interface
      • Normalized Interface
      • Virtual Wire Pair
    • Firewall Objects
      • Addresses
      • Wildcard FQDN Addresses
      • Services
      • Schedules
      • Virtual IPs
      • IP Pools
      • Traffic Shapers
      • Shaping Profile
    • Security Profiles
      • AntiVirus
      • Web Filter
      • Application Control
      • Intrusion Prevention
      • SSL/SSH Inspection
      • Application Signatures
      • IPS Signatures
    • Fabric Connectors
      • SDN
      • Threat Feeds
      • Endpoint/Identity
    • User & Authentication
      • User Definition
      • User Groups
      • LDAP Servers
      • RADIUS Servers
      • TACACS+ Servers
      • SMS Services
      • FortiTokens
    • Script
      • Scripts
  4. Click OK after creating the objects in each category.
  5. (Optional) Additional object configuration options can be enabled in Tools > Feature Visibility.
FortiGate global objects

FortiManager supports FortiGate global objects. FortiGate global objects are identified with the prefix “g-“.

When a FortiGate configuration using FortiGate global objects is imported into FortiManager, the global objects are added to the FortiManager as ADOM-level objects.

If FortiGate global objects (g-) are referenced in a FortiManager policy package, they are installed to the FortiGate Global VDOM and are usable in other VDOMs.

Below is a list of FortiGate global objects supported by FortiManager:

  • system replacemsg-group
  • system external-resource
  • webfilter profile
  • firewall wildcard-fqdn custom
  • ips sensor
  • sctp-filter profile
  • application list
  • dlp data-type
  • dlp dictionary
  • dlp sensor
  • dlp profile
  • webfilter search-engine
  • antivirus profile
  • file-filter profile
  • wireless-controller utm-profile
  • firewall ssh local-key
  • firewall ssh local-ca
Previous
Next

Creating object configurations

You can create new object configurations before including them in policy packages. Alternatively, you can also create policy packages using existing object configurations.

To create object configurations in Global Database:
  1. Change the ADOM to Global Database.
  2. Click Object Configurations. The Object Configuration pane shows the following object categories.
  3. Click Create New to create new objects in each category.
    • Normalized Interface
      • Normalized Interface
      • Virtual Wire Pair
    • Firewall Objects
      • Addresses
      • Wildcard FQDN Addresses
      • Services
      • Schedules
      • Virtual IPs
      • IP Pools
      • Traffic Shapers
      • Shaping Profile
    • Security Profiles
      • AntiVirus
      • Web Filter
      • Application Control
      • Intrusion Prevention
      • SSL/SSH Inspection
      • Application Signatures
      • IPS Signatures
    • Fabric Connectors
      • SDN
      • Threat Feeds
      • Endpoint/Identity
    • User & Authentication
      • User Definition
      • User Groups
      • LDAP Servers
      • RADIUS Servers
      • TACACS+ Servers
      • SMS Services
      • FortiTokens
    • Script
      • Scripts
  4. Click OK after creating the objects in each category.
  5. (Optional) Additional object configuration options can be enabled in Tools > Feature Visibility.
FortiGate global objects

FortiManager supports FortiGate global objects. FortiGate global objects are identified with the prefix “g-“.

When a FortiGate configuration using FortiGate global objects is imported into FortiManager, the global objects are added to the FortiManager as ADOM-level objects.

If FortiGate global objects (g-) are referenced in a FortiManager policy package, they are installed to the FortiGate Global VDOM and are usable in other VDOMs.

Below is a list of FortiGate global objects supported by FortiManager:

  • system replacemsg-group
  • system external-resource
  • webfilter profile
  • firewall wildcard-fqdn custom
  • ips sensor
  • sctp-filter profile
  • application list
  • dlp data-type
  • dlp dictionary
  • dlp sensor
  • dlp profile
  • webfilter search-engine
  • antivirus profile
  • file-filter profile
  • wireless-controller utm-profile
  • firewall ssh local-key
  • firewall ssh local-ca
Previous
Next