Description
This article describes how to troubleshoot when the Payment Card Industry Data Security Standard (PCI DSS) compliance report does not show the latest version. As of today, the latest version is v4.0.1.
Scope
FortiAnalyzer.
Solution
- FortiAnalyzer needs to have an additional license with SKU FCx-10-xxxxx-175-0x-DD and FCx-10-xxxxx-335-0x-DD, and displayed as FortiGuard Attack Surface Security Service and FortiAnalyzer Security Automation in the Support Portal and as Security Rating Update and Security Automation in FortiAnalyzer GUI.
In CLI, confirm the license as per below command:
FAZ # diagnose license list
Name Status Expiry Description
---------------------------------------------------------------------
PBDS Valid 2026-08-29 post breach detection
SCPC Expired 2025-11-21 cloud storage service
SOAR Valid 2026-08-29 SOAR and SIEM bundle service >>> need to have valid license
FOAS Valid 2026-08-29 FAZ Outbreak Detection Service
ISSS Valid 2026-10-06 Industrial Security Service
FGSA Valid 2026-01-15 Security Rating Update >>> need to have valid license
TIPE No License N/A FortiTIP Service
-
The latest PCO DSS v4.0.1 report should be under the Security Automation Reports folder in:
Reports -> Report Definitions -> All Reports -> Security Automation Reports.
-
If the report is not present, run the command below for the daemon fazsvcd to reimport reports from FortiGuard through the Remote Host Security Protocol (RHSP) package.
Enable debug:
FAZ # diagnose sql debug imexport dbgon
FAZ # diagnose sql debug imexport show RHSP
Restart daemon:
FAZ # diagnose test application fazsvcd 99
Related documents:
Technical Tip: Security Rating Report and PCI-DSS Compliance Report
