We have a fortigate onprem at each office locations, and a pair of HA in VM in datacenter.
The VM forti is provided by our MSP. On the same forti VM, they have other customers in different VDOMs.
They've told us that because of this setup, their VM forti can not be used as security fabric root.
We're not sure that's true, and would really like to use the HA pair as root. Is that setup possible?
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
I think they are right because security fabric root settings can be made on Global vdom. Because of that, if you configure security fabric root on global vdom these settings will affect all other traffic vdoms.
I couldn't find any document about that. If I find anything about that I will update my answer.
PS.
I found a document about security fabric in multi vdom environment.
This document shows that. if you want to connect your edge FortiGate to Root Fortigate, you need to use management vdom on root FortiGate. The MSP doesn't want to do this.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1631 | |
1063 | |
749 | |
443 | |
210 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.