Technical Tip: Extract Summary Debug Report from FortiAuthenticator via CLI with TFTP/FTP due to a Gateway Timeout error from FortiAuthenticator GUI. Or download debug logs report directly from GUI and then attach the debug logs file to a ticket with Fortinet Technical Assistance Center (TAC)

In some cases where it is not possible to download the report-summary.dbg due to a gateway timeout error, it is possible to use CLI as an alternative method to download the Summary debug report from FortiAuthenticator versions 6.3 and 6.4.

1) CLI Method to download the Summary debug log report:

It is possible to use any TFTP/FTP server application needed.

In this case, 'WinAgents TFTP Server Manager' is used.

It is necessary to download, install and run the app as local server.

a) Then SSH to FortiAuthenticator via putty or any SSH tool.
b) Then run the below command:

# execute backup debug-report tftp <filename> <server fqdn|ipaddr>

Or with an FTP server, use the following command:

# execute backup debug-report ftp <path> <server fqdn|ipaddr>[:port] [ftp_user] [ftp_password]

2) GUI Method for collecting the Summary debug report log:

TAC Support may ask users to download these or a debug report from GUI -> Log Access -> Log section.

In FortiAuthenticator 6.2 and lower, it looks like this:

 

 

 

Related KB article:
https://community.fortinet.com/t5/FortiAuthenticator/Troubleshooting-Tip-How-to-work-with-FortiAuthe...