Hello @smkml ,

In fact, we have a lot of Fortigate (and Fortiswitch) with the same template.

Each of them use the same template, including vlan name and tag.

We just have some IP set by CLI template and specific DHCP Reservation directly registered in the device database, different for each Fortigate.

So we don't want than the vlan template object be applied (as interface on Fortigate) each time a device installation is pushed from FortiManager.

Hi @dujardind ,

Since you make the changes on device database, I would suggest that you disabled the FortiSwitch central-management.

If central-management are enabled, your vlan related configuration need to change on the FortiSwitch Manager itself. Which is why it tried to purge your DHCP reservation config because the changes are in device database level. 

Thanks for your reply @smkml

We realy need central management by template because we have hundreds of switches to configure. It's not a good idea to do that without central templating..

I'm trying to find a workaround for DHCP in 3 steps

1- Reaffect my DHCP Server to another interface

2- Apply VLAN template from Fortiswitch without DHCP Server

3- Reaffect DHCP Server to the original interface (same as VLAN template)

I find a way to to the third step with the CLI template, that is applied after the Fortiswitch template.

But, for the first step, I'm looking for a way to apply another CLI template or any other script before the Fortiswitch template

I hope somebody have an idea about that

Hi @dujardind ,

Then, I would suggest that you make the changes on the FortiSwitch Template itself to reflect on ADOM level instead of device database level.

Another option is, to use a Script instead of CLI template to run it one time to multiple devices.

You may check below document for various example for the CLI scripts:

https://docs.fortinet.com/document/fortimanager/7.2.4/administration-guide/71780/cli-scripts