By default VDOM feature is disabled on the firewall and this has to be enabled..
There are two ways to enable this feature either via GUI or CLI but we will focus here on the CLI
Following commands will enable VDOMs on Fortigate firewall..
config system global
set vdom-admin enable
end
To Disable VDOM
config global
config system global
set vdom-admin disable
next
end
Now we will talk about VDOM and global settings..
Settings that we configure outside a VDOM are called Global settings which will affect entire
Fortigate including areas such as Interface, DNS, Firmware, Fortianalyzer, SNMP & Sandbox etc and
should always be done b a security expert.
After enabling settings for VDOM admin accounts with Super_admin profile can access settings for both
Global and VDOM settings. Other admins can configure only the VDOM they are assigned to.
Following commands are used for changing GLOBAL and VDOM settings...
For Global
config global
For VDOM
config vdom
edit <vdom_name>
No comments:
Post a Comment