Help
FortiManager
FortiManager supports network operations use cases for centralized management, best practices compliance, and workflow automation to provide better protection against breaches.
yuj_FTNT
Staff
Staff

Created on ‎06-03-2025 06:43 AM

Article Id 394589

Troubleshooting Tip: error message while pushing firewall policy - invalid mapping

Description

This article describes how to resolve the issue when FortiManager fails to push firewall policy with error message of 'dynamic interface', 'interface_name', id=xxxx, INVALID MAPPING - (null).
Scope FortiManager, FortiGate.
Solution

The following error may occur while pushing policies to a FortiGate.

 

fmg5.png

 

Copy device global objects

Vdom copy failed:
error -1 - unknown

Copy objects for vdom root
"dynamic interface", "vlan37", id=19604, INVALID MAPPING -  (null)

 

This happens when the interface object was deleted from the FortiGate directly instead of from the FortiManager. It creates a discrepancy between FortiGate and FortiManager.  

 

The solution is to either delete the interface object from 'Policy & Object' -> 'Object Configurations' -> 'Normalized Interface', or to remove the mapping, then push the policy again. 

 

Search for the interface as below.

The first option is to remove the interface completely if it is not used anywhere else.

 

fmg6png.png

 

The second option is to remove the per-device mapping. 

Select the interface, then select 'Edit' and remove the per-device mapping entry.

 

fmg7.png
264
0 Kudos
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.