I usually setup the hostname, management IP and HA information locally on each firewall then push everything else out from a single template to both firewalls. I also have 2 templates that I have setup in a template stack. 1 that has basic configurations that I want all firewalls in the environment to have like NTP servers, logging servers, etc. Then I have a specific template for each HA pair in the template stack and push the template stack out to the firewalls. This way you can make sure that the common settings are applied the exact same to all firewalls in the environment but also maintain individual site settings. Not sure if this is best practice but its how I configured it.
... View more