Technical Tip: How to clear sessions for a specific VDOM only
Description
This articles explains why it is important to use the appropriate admin profile when clearing the sessions of any specific VDOM.
When logged as a super_admin, all actions that are taken on the FortiGate will affect all the VDOMs since the super_user admin profile has the authority to administrate the whole device. The actions such as clearing sessions #diagnose sys session clear will clear all the sessions for all the VDOMs regardless on which VDOM are you logged on.
When logged as a prof_admin, actions that are taken will affect just the VDOM which is logged on and will have no affect on any other VDOM.
Solution
In order to perform an action to clear sessions on only a specific VDOM, and not affect all other VDOMs then it is important to:
1) Log to a VDOM with a prof_admin profile for that specific VDOM.
2) Execute below command:
This articles explains why it is important to use the appropriate admin profile when clearing the sessions of any specific VDOM.
When logged as a super_admin, all actions that are taken on the FortiGate will affect all the VDOMs since the super_user admin profile has the authority to administrate the whole device. The actions such as clearing sessions #diagnose sys session clear will clear all the sessions for all the VDOMs regardless on which VDOM are you logged on.
When logged as a prof_admin, actions that are taken will affect just the VDOM which is logged on and will have no affect on any other VDOM.
Solution
In order to perform an action to clear sessions on only a specific VDOM, and not affect all other VDOMs then it is important to:
1) Log to a VDOM with a prof_admin profile for that specific VDOM.
2) Execute below command:
#diagnose sys session clear