Fortinet black logo

Administration Guide

Onboarding new branch devices

Onboarding new branch devices

The SD-WAN overlay template uses a device group to determine which devices receive the SD-WAN provisioning templates.

When a new device is added to the device group, the SD-WAN provisioning templates are automatically assigned to the device, and you can install the changes using the Install Wizard.

Branch onboarding can be further simplified with the use of device blueprints and metadata variables:

  • Device blueprints can be used when adding model devices to FortiManager to simplify configuration of device settings, including device groups, configuring pre-run templates, policy packages, provisioning templates, and more. See Using device blueprints for model devices.
  • Metadata variables can be used as variables in provisioning templates. By default, the branch_id metadata variable is created by the SD-WAN overlay template and must be specified for each branch device. See ADOM-level metadata variables.

When onboarding multiple new branch devices, you can import devices from a CSV file using device blueprints. Metadata fields including the branch_id variable can be specified directly in the CSV file. See Import model devices from a CSV file.

To onboard new branch devices:
  1. Add the new FortiGate model device to FortiManager using the Device Manager.
    Optionally, you can configure a device blueprint to simplify device onboarding. See Using device blueprints for model devices.
  2. Assign the FortiGate device to the template's branch device group.
    The branch provisioning templates are automatically assigned to the device.
  3. Specify the metadata variables used by the SD-WAN overlay template. By default, the branch_id metadata variable must be specified.
  4. Assign policy package for the branch device, and then install the changes using the Install Wizard. See Install wizard.

Onboarding new branch devices

The SD-WAN overlay template uses a device group to determine which devices receive the SD-WAN provisioning templates.

When a new device is added to the device group, the SD-WAN provisioning templates are automatically assigned to the device, and you can install the changes using the Install Wizard.

Branch onboarding can be further simplified with the use of device blueprints and metadata variables:

  • Device blueprints can be used when adding model devices to FortiManager to simplify configuration of device settings, including device groups, configuring pre-run templates, policy packages, provisioning templates, and more. See Using device blueprints for model devices.
  • Metadata variables can be used as variables in provisioning templates. By default, the branch_id metadata variable is created by the SD-WAN overlay template and must be specified for each branch device. See ADOM-level metadata variables.

When onboarding multiple new branch devices, you can import devices from a CSV file using device blueprints. Metadata fields including the branch_id variable can be specified directly in the CSV file. See Import model devices from a CSV file.

To onboard new branch devices:
  1. Add the new FortiGate model device to FortiManager using the Device Manager.
    Optionally, you can configure a device blueprint to simplify device onboarding. See Using device blueprints for model devices.
  2. Assign the FortiGate device to the template's branch device group.
    The branch provisioning templates are automatically assigned to the device.
  3. Specify the metadata variables used by the SD-WAN overlay template. By default, the branch_id metadata variable must be specified.
  4. Assign policy package for the branch device, and then install the changes using the Install Wizard. See Install wizard.