ADOMs can concurrently manage FortiGate units running the same FortiOS version as the ADOM plus the next higher maintenance release (provided the FortiManager version supports one-click ADOM upgrade to that next higher maintenance release). This lets you manage an ADOM while upgrading the devices within that ADOM.
When adding a new FortiGate unit to an ADOM, the FortiGate unit should have the same FortiOS version as the ADOM.
This feature can be used to facilitate upgrading to new firmware.
Importing policies from devices running higher versions than the ADOM is not supported. Installation to devices running higher versions is supported.
For a complete list of supported devices and firmware versions, see the FortiManager Release Notes.
Each ADOM is associated with a specific FortiOS version, based on the firmware version of the devices that are in that ADOM. This version is selected when creating a new ADOM (see Creating ADOMs), and can be updated only after all of the devices within the ADOM have been updated to the same FortiOS firmware version.
The general steps for upgrading an ADOM containing multiple devices running FortiOS 6.2 from 6.2 to 6.4 are as follows:
- In the ADOM, upgrade one of the FortiGate units to FortiOS 6.4, and then resynchronize the device. See Firmware for more information.
All of the ADOM objects, including Policy Packages, remain as 6.2 objects.
- Upgrade the rest of the FortiGate units in the ADOM to FortiOS 6.4.
- Upgrade the ADOM to 6.4. See Upgrading an ADOM for more information.
All of the database objects will be converted to 6.4 format, and the GUI content for the ADOM will change to reflect 6.4 features and behavior.
An ADOM can only be upgraded after all the devices within the ADOM have been upgraded.