[abusharif]

Internally managed means that configuration (firewall rules, vpn settings) are added on the SMARTCENTER only and your edge fetches this config, meaning no vpn/rules changes needs to be done on the edge boxes. It also means that logging will be centralized (logs sent from edge to smartcenter). Also you skip using pre-shared secrets and vpns are established with help of certificates etc....

If you want it internally managed then make sure "externally managed" checkbox on the edge object in your smartcenter is not chosen and make sure that you from EDGE connect to "service center" (your smartcenter) to establish trust.