Fortinet white logo
Fortinet white logo

Administration Guide

Adding a FortiManager

Adding a FortiManager

When you add a FortiManager, FortiPortal polls the FortiManager immediately to obtain information about its managed devices. FortiPortal subsequently polls the FortiManager at the configured polling frequency.

To add a FortiManager:
  1. Prepare the FortiManager as follows:

    1. ADOM mode must be enabled on FortiManager to work with FortiPortal. If needed, enable advanced adom-mode on FortiManager so that you can add VDOMs on the same physical device to different ADOMs.

      In the FortiManager CLI, run this command to enable ADOMs (and optionally set the ADOM mode to advanced):

      config system global
        set adom-status enable
        set adom-mode advanced
        y
      end
    2. On FortiManager, create an admin user with read/write permission:

      config system admin user 
        edit <username>
          set profileid Super_User
          set adom all_adoms
          set policy-package all_policy_packages
          set password <password>
          set rpc-permit read-write
        next
      end
    3. Optionally, enable workspace mode on FortiManager:

      config system global
        set workspace-mode normal
      end

      You may enable workspace mode globally or in specific ADOMs.

      When FortiManager has workspace mode enabled globally or per-ADOM, FortiPortal locks the ADOM when edits are made. If workspace mode is not enabled, FortiPortal installs updates to devices without locking the ADOM.

    4. The SD-WAN monitoring widgets in the organization SD-WAN dashboard require that SD-WAN monitoring history is enabled to function properly. If this setting is not enabled, FortiManager only saves 10 minutes of SD-WAN data.

      To enable SD-WAN monitoring history on FortiManager:

      config system admin setting
        set sdwan-monitor-history enable
      end
    5. Add your FortiManager device to FortiPortal. You must poll FortiManager to see the device list.
  2. In Devices > FortiManager, click Create.

  3. Input the fields, as described in Edit a FortiManager.

  4. Click Save.

To add a FortiManager Cloud instance:
  1. In Devices > FortiManager, click Create.

  2. Select FortiManager Cloud.

  3. Input the fields, as described in Edit a FortiManager Cloud instance.

  4. Click Save.


Adding a FortiManager

Adding a FortiManager

When you add a FortiManager, FortiPortal polls the FortiManager immediately to obtain information about its managed devices. FortiPortal subsequently polls the FortiManager at the configured polling frequency.

To add a FortiManager:
  1. Prepare the FortiManager as follows:

    1. ADOM mode must be enabled on FortiManager to work with FortiPortal. If needed, enable advanced adom-mode on FortiManager so that you can add VDOMs on the same physical device to different ADOMs.

      In the FortiManager CLI, run this command to enable ADOMs (and optionally set the ADOM mode to advanced):

      config system global
        set adom-status enable
        set adom-mode advanced
        y
      end
    2. On FortiManager, create an admin user with read/write permission:

      config system admin user 
        edit <username>
          set profileid Super_User
          set adom all_adoms
          set policy-package all_policy_packages
          set password <password>
          set rpc-permit read-write
        next
      end
    3. Optionally, enable workspace mode on FortiManager:

      config system global
        set workspace-mode normal
      end

      You may enable workspace mode globally or in specific ADOMs.

      When FortiManager has workspace mode enabled globally or per-ADOM, FortiPortal locks the ADOM when edits are made. If workspace mode is not enabled, FortiPortal installs updates to devices without locking the ADOM.

    4. The SD-WAN monitoring widgets in the organization SD-WAN dashboard require that SD-WAN monitoring history is enabled to function properly. If this setting is not enabled, FortiManager only saves 10 minutes of SD-WAN data.

      To enable SD-WAN monitoring history on FortiManager:

      config system admin setting
        set sdwan-monitor-history enable
      end
    5. Add your FortiManager device to FortiPortal. You must poll FortiManager to see the device list.
  2. In Devices > FortiManager, click Create.

  3. Input the fields, as described in Edit a FortiManager.

  4. Click Save.

To add a FortiManager Cloud instance:
  1. In Devices > FortiManager, click Create.

  2. Select FortiManager Cloud.

  3. Input the fields, as described in Edit a FortiManager Cloud instance.

  4. Click Save.