One of our customer is currently managing Fortigate device using FortiManager.
The Firewall has VDOM activated.
On the firewall, I created one admin user (with prof_admin admin profile, so RW access) to allow management of one VDOM only (root).
When the admin user connects to the Fortigate, it receives a prompt that 'This FortiGate is currently managed by a FortiManager device' but the Login Read-Write button is missing.
So the admin user has only read access even if the prof_admin (RW access) is assign to him...
Here are snippets from the config and screenshots:
config system accprofile edit "Level Admin" set secfabgrp read-write set ftviewgrp read-write set authgrp read-write set sysgrp read-write set netgrp read-write set loggrp read-write set fwgrp read-write set vpngrp read-write set utmgrp read-write set wifi read-write next end config system admin edit "jacob" set accprofile "Level Admin" set vdom "Level" next end config system vdom-property edit "Level" set description "property limits for vdom Level" set snmp-index 3 next end