Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Alan7622
New Contributor

Adom root question

When ADOMs are activated, 

When ADOMs are activated, 

Hello, I'm a beginner and I've activated ADOM in my lab.

I have 2 ADOMs: 

 - ADOM Si1

 - ADOM Si2

 

And a third ADOM that was created automatically. THE ROOT ADOM

There is no policy package in this ADOM.

What is it for?

 

  • Thanks for your help.
1 Solution
Toshi_Esumi
SuperUser
SuperUser

In the admin guide I keep referring to has very short description about root ADOM.
https://docs.fortinet.com/document/fortimanager/7.2.7/administration-guide/718923/root-adom

It's a quite similar concept with root VDOM on FGTs. It's there even when you don't enable ADOM/VDOM and everything would go in there except "global" stuff. So after you enabled ADOM mode and created other ADOMs, you can still use root ADOM to have real devices and policy&objects if you'd like.

As the admin guide states, all unautorized device would go into root ADOM. So when you try registering another device like FGT, which is already configured and running, it would go into root ADOM. Then you can authorize the device and move it into another ADOM where you want it to be in.

Toshi

View solution in original post

2 REPLIES 2
Toshi_Esumi
SuperUser
SuperUser

In the admin guide I keep referring to has very short description about root ADOM.
https://docs.fortinet.com/document/fortimanager/7.2.7/administration-guide/718923/root-adom

It's a quite similar concept with root VDOM on FGTs. It's there even when you don't enable ADOM/VDOM and everything would go in there except "global" stuff. So after you enabled ADOM mode and created other ADOMs, you can still use root ADOM to have real devices and policy&objects if you'd like.

As the admin guide states, all unautorized device would go into root ADOM. So when you try registering another device like FGT, which is already configured and running, it would go into root ADOM. Then you can authorize the device and move it into another ADOM where you want it to be in.

Toshi

tpatel
Staff
Staff

Hello Alan, 

 

A root adom is default adom, Unauthorized devices display in the root ADOM. 
https://docs.fortinet.com/document/fortimanager/7.6.0/administration-guide/718923/root-adom

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors