Help
FortiEDR
FortiEDR automates the protection against advanced threats, pre and post-execution, with real time orchestrated incident response functionality.
aguevara16
Staff
Staff

Created on ‎06-17-2025 09:34 AM Edited on ‎09-08-2025 10:16 PM By Moderator

Article Id 396845

Troubleshooting Tip: FortiEDR Jumpbox is disconnected

Description This article describes steps to troubleshoot a Jumpbox Disconnected error.
Scope FortiEDR Core v6.0.1+.
Solution

The following disconnected state can be seen in an on-prem Jumpbox after network issues in the local network:


Core Disconnected.png
Steps to resolve:

  1. Log in to the Jumpbox and verify FortiDR service is running:

 

fortiedr status

 

  1. Verify connection and DNS resolution with an EDR Manager and Aggregator (port 8081) via ping and telnet.

  2. If the connection is OK with EDR Manager, proceed to restart FortiEDR services in the Jumpbox:


fortiedr stop
fortiedr start

fortiedr status

fortiedr version

 

If the Jumpbox/Core continues to be disconnected after running these steps, collect the Core logs by following these steps:

 

  1. Stop the Core service:

 

fortiedr stop

 

  1. Zip the Core directory using tar:

 

tar -czvf core_logs.gz /opt/FortiEDR/core

 

  1. Export the 'core_logz.gz' folder and upload it to the support ticket.

  2. Start the Core service:

 

fortiedr start

 

Note:

To track the latest releases (including Core versions), refer to the article below:

Technical Tip: FortiEDR - Latest Release Version Chart & EOL Details
45306
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.