Managing FortiGate-VM on FortiManager
After deploying the FortiGate-VM, you must register it as a managed device on FortiManager. FortiManager eases management, especially when you have multiple FortiGate-VM nodes, by providing a single pane of glass and allowing you to centrally manage firewall policies.
The steps described apply commonly to FortiManager-VM and FortiManager physical appliances.
Newly added devices are listed in the root ADOM under Device Manager as unauthorized.
To manage FortiGate-VM on FortiManager:
- Log in to FortiManager and enter the root ADOM.
- Go to Device Manager.
- Under UnAuthorized Devices, select the newly installed FortiGate-VM.
- Click Authorize device.
- Select the ADOM that you want to add the device to. Adding the VM to the same ADOM as the NSX-T connector is recommended.
- After FortiManager authorizes the device, click the FortiGate-VM and select Import Policy.
- For Object Selection, ensure that Import all objects is selected to ensure that FortiManager imports the virtual wire pair. Click Next.
- Do not modify external and internal under ADOM Interface. Click Next.
- You have successfully registered the FortiGate-VM as managed device under Managed Devices. Check the configuration:
- Double-click the device name to show the FortiGate-VM dashboard.
- Under Policy Package Status, click the policy package name. FortiManager displays the Policy Packages page.
- Click Tools > Display Options.
- Ensure that Virtual Wire Pair Policy is enabled, then click OK. Virtual wire pair policy is the firewall policy package to use for the FortiGate-VM, which works as service insertion/chaining on NSX-T. The policy list in the left pane displays the IPv4 virtual wire pair policy. The right pane may be empty at this step.