Hello! We are trying to update certificate on FortiManager for HTTPS
admin access.But after we generated CSR and got CER we are unable to
upload it to Manager, because when we are using "Import" via GUI Manager
show error - CA certificate check faile...
Hello! We have FGT version 5.4 with latest release. Also we have freshly
rack-mounted fortimanager. this manager have 5.0 policy package version
and could not control fgt 5.4 How to upgrade fortimanager from 5.0 to
5.4 ? It was initially 5.0 that's w...
Hello! We have complete mystery situation. Two FortiGates has been
connected one to each other via internal port 3. this ports have ip
addresses as 2.2.2.1-2/24. But they unable to ping each other! When we
issue show arp, we can see arp from second f...
Hello ! We have some strange problem:We need to NAT for fortigate so it
can get updates and so on but how to do it when we are using dynamic IP
pools ? Our scheme is easy: ISP-to-FW - private adresses, so we must NAT
to dynamic ip-POOL with public IP...
And this is cracked. DO NOT IMPORT CERTIFICATES VIA GUI. Gui completely
bugged. From incorrect Timezone visualisation to certificate import
fails. To import certificate issue from CLI:execute certificate local
import // TFTP
At last ! I found out - all you need to do to convert your "root" ADOM
to 5.4 and disable ADOM feature is to issue commandexecute reset
all-except-ipThis command will bring down manager and reset database.
Then you will have single ADOM FrotiManager ...
Please read full sentence before post. We have Fortimanager 200D it is
5.4 by itself. But we need to get "root" ADOM with version 5.4 so we can
import policy from FGT 5.4. So again, we have FortiManager 5.4 with root
ADOM version 5.2. Our goal is to ...
Just to clarify, isp to border router, router to fortigate is connected
via private ip addresses. We setted public ip in ip pool and use it for
our internal network. But how to use it for fortigate? We cant connect
to public segment directly.
