Help
FortiAuthenticator
FortiAuthenticator provides centralized authentication services for the Fortinet Security Fabric including multi-factor authentication, single sign-on services, certificate management, and guest management.
nathan_h
Staff
Staff

Created on ‎03-04-2022 11:58 PM Edited on ‎09-25-2024 09:25 PM By Moderator

Article Id 206154

Technical Tip: Extract Summary Debug Report from FortiAuthenticator via CLI with TFTP/FTP or download debug logs report directly from GUI

Description This article describes how to extract Summary Debug Report from FortiAuthenticator via CLI with TFTP/FTP Or it is possible to download debug logs report directly from GUI and then attach the debug logs file to a ticket with Fortinet Technical Assistance Center (TAC).
Scope FortiAuthenticator.
Solution

In some cases where it is not possible to download the report-summary.dbg due to a gateway timeout error, it is possible to use CLI as an alternative method to download the Summary debug report from FortiAuthenticator versions 6.3 and 6.4.

 

  1. CLI Method to download the Summary debug log report:

It is possible to use any TFTP/FTP server application needed.

In this case, 'WinAgents TFTP Server Manager' is used.

 

It is necessary to download, install, and run the app as a local server.

 

  1. Then SSH to FortiAuthenticator via putty or any SSH tool.
  2. Then run the below command:


execute backup debug-report tftp <filename> <server fqdn|ipaddr>


Or with an FTP server, use the following command:


execute backup debug-report ftp <path> <server fqdn|ipaddr>[:port] [ftp_user] [ftp_password]

 

Hawada1_0-1646486358367.png

 

  1. GUI Method for collecting the Summary debug report log:

     

TAC Support may ask users to download these or a debug report from GUI -> Log Access -> Log section.

In FortiAuthenticator 6.2 and lower, it looks like this:

 
Hawada1_0-1676194438543.png

 

In later versions, this changed slightly:
 
Hawada1_1-1676194438543.png

 

 
In FortiAuthenticator Version 6.4.x, it is possible to find the 'Summary debug log' under Logging -> Log Access -> Logs:

ndumaj_0-1664185868814.png

 

The file 'report-summary.dbg' is encrypted and is meant for Fortinet TAC.
The resulting report.dbg or report-summary.dbg contains the latest logs but with less duration than what is visible in the https://fac-ip/debug menu.

 

Related Articles:
Troubleshooting Tip: How to work with FortiAuthenticator Technical Support. 

Troubleshooting Tip: How to debug FortiAuthenticator Services. 

 

3627
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.