Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
New Contributor

FortiGate to FortiManager: FGFM Protocol flow

I was trying to understand about FGFM protocol and it is used to onboard FGT into FMG or enabling communication between FGT & FMG to manage the FGT via FMG centrally.


I have below list of queries to understand more about this protocol. can anyone knows more about this protocol ?


  1. What is Fortinet recommended setup to establish a FGFM communication between FGT to FMG or vice versa over Internet?  Using Public IP or Using SDWAN overlay with Private IP?
  2. How is the FGFM communication secured over internet?
  3. If FortiGate uses broadband connection with shared Public IP, then how to make secure connectivity with FortiManager over BB? & How it is secured?
  4. Is CLI commands pushed to FGT from FMG using JSON script? Or CLI commands pushed to FGT directly from FMG?
  5. What is the use case of JSON script & RTM protocol between FGT & FMG?

    6. FGFM tunnel (This tunnel is established between FGT & FMG, Is it secure?) using BIOS certificate & TLS tunnel using Fortinet CA certificate. please confirm the same

Community Manager
Community Manager

Hello Kavi,


 I have found these documents which explain the FGFM protocol:


Could you please tell me if it helps?




Anthony-Fortinet Community Team.

Hi Anthony,


Not getting all the answers from this docs, I already referred these docs.