1. To check the license status of managed FortiGate on FortiManager, run the following on FortiManager: diag fmupdate dbcontract FGTXXX (Replace 'FGTXXX' with the managed FortiGate Serial Number).
   
2. Ensure include-default-servers is set to enable under config system central-management (it is enabled by default). This is to allow FortiGate to connect to FDS if the connection to FortiManager fails.
   
   
   
3. Create a blackhole route to the FortiManager IP as such :
   
   
   config router static
       edit 1
           set dst 10.4.5.245 255.255.255.255
           set blackhole enable
           set vrf 0
       next
   end
   
   Do note the usage of /32 as it is only desired to block the route to FortiManager.
   
   
4. To verify, check the FortiGate connection status on FortiManager, or run the following commands on CLI, it should connect to FDS now. 
   

diagnose debug application update -1
diagnose debug enable
execute update-now

To stop the debug, run the command 'diagnose debug disable'.

Once the FortiManager issue is fixed, simply remove the static route created to re-instate the connection to FortiManager.

config router static
    delete 1
end