Technical Tip :How to capture configuration push from FortiManager on FortiGate CLI
| Description | This article describes how to see the configuration changes on FortiGate CLI when it is pushed from FortiManager. |
| Scope | FortiGate. |
| Solution | In the below example, a firewall policy configuration is pushed from FortiManager.
To record the configuration change, run the below commands on FortiGate CLI: diagnose debug reset
Below is the output:
To disable the debug, use the following commands:
diag debug disable diag debug reset
Note: This will NOT capture the TCL script push from FortiManager because the TCL script uses SSH instead of the regular FGFM tunnel to connect to the FortiGate (which is the case of config/policy/CLI Script push). |
