Skip to main content
OddCypher
OddCypher
New Member
August 29, 2025
Question

FortiManager: Find and Replace Address Objects with automated

  • August 29, 2025
  • 2 replies
  • 546 views

Hello,

 

due to a domain change/migration I have to "clone" over 600 firewall adress objects (Type FQDN), keeping them in their policies and also their firewall address groups, as well as also the original object, so that we have them both active until the migration period is over and then we can delete the old ones.

 

(e.g. srv-01.prod.domain.net -> srv-01.test.domain.net)

 

In the past, when we had about up to 30 objects or so, we solved this by the "find and replace" function on the FortiManager GUI, as it automatically also considers the objects membership in groups and policies and you were able to replace the object with itself and the new, modified one.

 


I am looking for ideas how to automate this process, so I don't have to click and replace hundrets of objects manually. Are there any suggestions how to do this? 

 

Thanks a lot in advance.

2 replies

Anthony_E
Staff
Anthony_E
Staff
September 1, 2025

Hello,


Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.


Thanks,

Best Regards
    ede_pfau
    SuperUser
    ede_pfau
    SuperUser
    September 3, 2025

    jinja2 is the way to go. Maybe you could post an example and I'll try to give you a hint.

     

    One obstacle is that you cannot directly script on the global or ADOM database. I've worked around that by scripting addresses on a Fortigate, and re-import it's config into the db.

     

     

      Terms & ConditionsAccessibility statement