Help
FortiManager
FortiManager supports network operations use cases for centralized management, best practices compliance, and workflow automation to provide better protection against breaches.
cfirpo_FTNT
Staff
Staff

Created on ‎02-04-2016 02:57 PM

Article Id 189453

Technical Note: FortiManager dynamic objects

Description
If a dynamic object is modified directly on a managed FortiGate, the next time the configuration is imported,  "Per-Device Mapping" will be enabled.  It will also be mapped to the device that made the change.

This occurs by design as the FortiManager is taking a preventative measure by tagging it as dynamic and assigning the FortiGate to it.

Solution
When a device is managed by FortiManager it is recommended not to make changes directly on the device, but rather apply the changes via FortiManager.

User should have read only privileges.  If the user needs more flexibility they should have their own ADOM, as to not impact other devices.

Preview file
99 KB
4137
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.