Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
vlw38
New Contributor II

Policy Status Unknown in FM/Device Manager/Policy Package Status

Fortimanager VM-64 / 6.2.3

Upgraded several FGT-60D and 100D from 5.4.4 <-> 6.0.8 following suggested upgrade path

In FM Device Manager under Policy Package Status –the policies of these Fortigates have grey question mark with status= unknown. I tried a refresh but it didn’t changes the status, I can’t import policy b/c I get the error message : import policy is not executed b/c devices firmware version is different with ADOM version. I have one ADOM for 5.4.4 and read somewhere I could upgrade the fortigates to a higher FortiOS and when all the Fortigates have been upgraded then I can just edit the ADOM name..But the other Fortigates in this ADOM will be upgraded over the next few weeks. But I’d rather have these policies not in an unknown state until then. Any suggestions? Should I try to re-install the policy?

2 REPLIES 2
localhost
Contributor III

You have two options:

 

- Upgrade all Fortigates in your vdom to 6.x and afterwards upgrade the ADOM version in FortiManager.

If the Fortigate version does not match the ADOM version in FortiManager you are unable to import/deploy any settings for that specific Fortigate. There are some exceptions, see table below.

 

- Create a new 6.0 ADOM. Import the upgraded device into the new ADOM and for time being use two different ADOMs for managing your Fortigates.

 

There is limited support if the versions are just one major release apart:

Nonetheless, I personally prefer going the 'new adom' route.

 

Technical Tip: How to upgrade an ADOM on FortiManager:

 

https://kb.fortinet.com/kb/documentLink.do?externalID=FD47857

 

vlw38
New Contributor II

I took your suggestion and went the new ADOM route.

Everything good. Thank you

Labels
Top Kudoed Authors