|
For FortiManager:
The TCP/541 is allowed between FortiGate and FortiManager, but device registration is stuck in a connection handshake with an unknown status.
diagnose fdsm central-mgmt-status
Connection status: Handshake
Registration status: Unknown
In this scenario, the FortiGate is operating in multi-VDOM mode with a FortiManager Fabric connector that is created via the GUI console. The system's central-management will use 'root' as the default VDOM setting, and ensure the VDOM setting is set correctly concerning the user environment by using the CLI console.
config system central-management
set type fortimanager
set fmg <fmg IP>
set vdom <Management VDOM>
set fmg-source-ip <ip address>
set interface-select-method specify
set interface <interface name>
end
For FortiManager Cloud:
When using FortiManager Cloud, FortiGuard must be configured within the same VDOM. Otherwise, the central management configuration will revert to its default settings for VDOM to <root> VDOM.
config system central-management
set type fortimanager
set fmg "fortimanager.forticloud.com"
set vdom <Management VDOM>
end
config system fortiguard
set vdom <Management VDOM>
end
|
