Skip to main content
kleberre
kleberre
New Member
July 16, 2025
Question

Fortimanager push object who doesn-t exist in DB Fortigate

  • July 16, 2025
  • 1 reply
  • 620 views

Hello,

 

Fortimanager version : 7.4.7

Fortigate version : 7.4.8

Adom : 7.4

 

Our fortimanager try to push object who aren't use in Policy package or SDWAN rules 

For example :

config vdom
edit SDWAN
config firewall address
edit "ACE-1"
12fc575c-6239-51f0-6d5e-bf3aff5d5940
set subnet 10.10.10.10 255.255.255.255
next

 

I checked the CLI configurations on FortiManager, and this object does not exist in the database of Fortigate.

 

Other problem, when i modify a groupe like GRP-FORTIGATE, the adress object is not add in the group when i push. But in GUI of fortimanager, group and entry are good

 

Best regards, 

Killian

1 reply

smkml
Staff
smkml
Staff
July 17, 2025

Hi @kleberre ,

 

Kindly check if you have any assigned template to the device which related to the configuration, or else you may tried to perform Retrieve, and check it it still try to install unwanted changes.

 

The second issue, you may check on the group  GRP-FORTIGATE under per-device mapping, you may need to add in the specific FGT that you need to install.

    kleberre
    kleberreAuthor
    New Member
    July 17, 2025

    Hello,

    I use SD-WAN templates, but I’m not using any of the objects pushed by FortiManager. I have already try to retrieve but no change. Still facing the issue.

    I have already checked, and there is no per-device mapping configured.

    Terms & ConditionsAccessibility statement