Hi there,
I am currently working on a migration of many Cisco ASA firewalls to Fortigates managed by a FortiManager. Since many of the FG are already in production it is critical that we do not import or modify existing objects when running a CLI script. Is there any way or setting to prevent importing objects that already exist in the database through CLI scripts other than manually comparing the script with the existing list of objects?
i dont believe so, the CLI scripts are pretty basic on that side, they just do what you say without checking, so overwriting what was there, if there was.
if you are up to it (or someone else in the company) you might want to look at the REST API and first search before adding, this will require a good amount of scripting / coding experience though.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.