Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
KC_Hing
Staff
Staff

Created on ‎04-13-2022 10:15 AM Edited on ‎04-13-2022 10:16 AM By Anonymous

Article Id 209209

Technical Tip: Registration status 'Unknown' between FortiGate and FortiManager.

Description

This article describes how to fix the device registration status 'Unknown' error in multi Vdom mode.
Scope

FortiGate, FortiManager.
Solution

The TCP/541 is allowed between FortiGate and FortiManager but device registration is stuck in connection handshake with unknown status. 

 

# diagnose fdsm central-mgmt-status
     Connection status: Handshake
     Registration status: Unknown

 

In this scenario, the FortiGate is operating in multi VDOM mode with a FortiManager Fabric connector that is created via GUI console. The system central-management will use 'root' as the default VDOM setting and Ensure the VDOM setting is set correctly with respect to the customer environment by using the CLI console.

 

# config system central-management
    set type fortimanager
    set fmg <fmg IP>
    set vdom "vdom name"  <<<
    set fmg-source-ip <ip address>
    set interface-select-method specify
    set interface <interface name>
end
Labels:
2446
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.