Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
MD-LRE
New Contributor

FortiManager 7.4.1 with 6.4 ADOM

I know this in an unsupported configuration, but I have a bunch of old firewalls that are running 6.4 firmware and no matter how hard I push, I haven't been permitted to upgrade them.  We will be swapping out hardware soon to new firewalls but that is going to be a slow process.  I have a FortiManager running 7.2.2 and have tried to add FortiGates running 7.2.6 firmware, but they fail every time.  I wanted to upgrade the FortiManager to 7.4.1 but wanted to leave the 6.4 ADOM in place.  We don't use FortiManager like we should, we are using it like a backup solution and importing the policy packages from each of the old firewalls.  The new ones we are rolling out will be managed by the FortiManager, but I need to still backup the old firewall configs.  If I upgrade FortiManager to 7.4.1, can I still run imports on a 6.4 ADOM?

1 Solution
lingky88
Staff
Staff

Hi,

 

It is recommended to maintain the same version for the ADOM and managed FortiGates. You will need to adhere to the compatibility matrix to ensure that both the FortiGate and FortiManager firmware versions are compatible.

 

Reference: https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/caebfdf7-dec0-11ed-8e6d-fa163e...

 

Thank You.

View solution in original post

4 REPLIES 4
anignan
Staff
Staff

Hi @MD-LRE ,

 

Based on this article you can managed FGT on 6.4 with an ADOM version of 7.0.

REF: https://docs.fortinet.com/document/fortimanager/7.4.1/upgrade-guide/68772/upgrading-unsupported-adom....

 

Abdel

lingky88
Staff
Staff

Hi,

 

It is recommended to maintain the same version for the ADOM and managed FortiGates. You will need to adhere to the compatibility matrix to ensure that both the FortiGate and FortiManager firmware versions are compatible.

 

Reference: https://fortinetweb.s3.amazonaws.com/docs.fortinet.com/v2/attachments/caebfdf7-dec0-11ed-8e6d-fa163e...

 

Thank You.

MD-LRE

My company decided to downgrade the firewalls that are running 7.4.1 to 7.2.6 and upgrade the FortiManager to 7.2.4.  Thank you for your input.  The compatibility matrix helped make the decision.

Debbie_FTNT
Staff
Staff

Hey MD-LRE,

based on the compatibility matrix shared by lingky88, you should be fine if you upgrade your FortiManager to firmware version 7.2.4, instead of going to 7.4.1- that should support FortiGates in firmware 7.2.6, and still supports firmware version 6.4 as well :).

+++ Divide by Cucumber Error. Please Reinstall Universe and Reboot +++
Top Kudoed Authors