Configuring Vdoms And Global Settings; Vdom Licenses - Fortinet FortiGate Series Administration Manual
Hide thumbs
Also See for FortiGate Series:
- Administration manual (60 pages) ,
- Install manual (51 pages) ,
- Quick start manual (14 pages)
Table of Contents
Advertisement
Using virtual domains
Configuring VDOMs and global settings
VDOM licenses
FortiGate Version 4.0 MR1 Administration Guide
01-410-89802-20090903
http://docs.fortinet.com/
•
Feedback
•
A new VDOM entry appears under the System option.
•
Within a VDOM, reduced dashboard menu options are available, and a new Global
option appears. Selecting Global exits the current VDOM.
•
There is no operation mode selection at the Global level.
•
Only super_admin profile accounts can view or configure global options.
•
Super_admin profile accounts can configure all VDOM configurations.
•
One or more administrators can be set up for each VDOM; however, these admin
accounts cannot edit settings for any VDOMs for which they are not set up.
When virtual domains are enabled, the current virtual domain is displayed at the bottom
left of the screen, in the format Current VDOM: <name of the virtual domain>.
A VDOM is not useful unless it contains at least two physical interfaces or virtual
subinterfaces for incoming and outgoing traffic. Availability of the associated tasks
depends on the permissions of the admin. If your are using a super_admin profile account,
you can perform all tasks. If you are using a regular admin account, the tasks available to
you depend on whether you have read only or read/write permissions, Table 6 shows
what roles can perform which tasks.
Table 9: Admin VDOM permissions
Tasks
View global settings
Configure global settings
Create or delete VDOMs
Configure multiple VDOMs
Assign interfaces to a VDOM
Create VLANs
Assign an administrator to a VDOM
Create additional admin accounts
Create and edit protection profiles
All FortiGate units, except the 30B, support 10 VDOMs by default.
High-end FortiGate models support the purchase of a VDOM license key from customer
service to increase their maximum allowed VDOMs to 25, 50, 100, 250, or 500.
Configuring 250 or more VDOMs will result in reduced system performance.
Table 10: VDOM support by FortiGate model
FortiGate model
30B
Low and mid-range models
High-end models
Regular administrator account
Read only
Read/write
permission
permission
yes
yes
no
no
no
no
no
no
no
no
no
yes - for 1 VDOM
no
no
no
yes - for 1 VDOM
no
yes - for 1 VDOM
Support
Default VDOM
VDOMs
maximum
no
0
yes
10
yes
10
Configuring VDOMs and global settings
Super_admin
profile
administrator
account
yes
yes
yes
yes
yes
yes - for all VDOMs
yes
yes - for all VDOMs
yes - for all VDOMs
Maximum VDOM
license
0
10
500
165
Advertisement
Table of Contents
