FortiADC periodically connects to FDN services for its FortiGuard service license verification and signature database/engine updates.

When FortiADC is deployed behind a firewall or security system, the connection to FDN services may be blocked, preventing FortiADC from validating its license and components.

FortiADC requires at least a DNS and HTTPS connection to the below domains:

update.fortiguard.net
globalupdate.fortiguard.net
service.fortiguard.net

Perform the below actions once FDN domains are allowed in the firewall policy or security devices.

From GUI:

1. Go to System  -> FortiGuard.
2. Under FortiGuard Services, select Update FortiGuard Service Definitions

Or:

From CLI:

execute ping service.fortiguard.com

execute ping update.fortiguard.com

execute update-now

Debugs:

diagnose debug reset
diagnose debug module updated all
diagnose debug enable
execute update-now

Steps to verify:

From GUI:

1. Go to System -> FortiGuard.
2. Review Status information.

From CLI:

get system status

Related document:
Connecting to FortiGuard services