Troubleshooting Tip: Resolving 'CMDB add entry failed' and 'CMDB command timeout' errors when saving configuration
| Description | This article provides steps to perform troubleshooting when a CMDB error shows up. |
| Scope | FortiGate. |
| Solution | When trying to perform a configuration change, CMDB-related errors could appear, such as 'CMDB add entry failed', or 'CMDB command timeout'. it is most likely the result of the wrong upgrade path followed. It is always recommended to follow the upgrade path recommended by the Upgrade Path Tool Table.
When a user looks into the CLI by running this command:
diagnose sys flash list
Two boot partitions will be visible inside the grub configuration: active and backup. The expected observation is that the primary boot partition should have the current firmware version loaded; if not, it means the image was corrupted.
To fix this, attempt to kill the process which is locking the CMDB Database. To do so, run the following command:
get sys cmdb status diagnose sys cmdb info
diagnose sys kill 11 <PID> <----- Replace <PID> with the value of 'owner id': from the previous command.
If the problem persists, the FortiGate should be rebooted. If the issue persists after the reboot, capture the following diagnostic commands and open a new TAC ticket:
diagnose sys flash list
Perform the configuration change until the error appears, and then stop the debug by executing the following commands:
diagnose debug disable
Note: Use this process as a last resort as this may drop or terminate the session, affecting connectivity.
The final option is to flash format FortiGate using the following KB article: Technical Tip: Formatting and loading FortiGate firmware image using TFTP. |
