| Solution |
Starting from v7.2.11, v7.4.8, v7.6.5, v8.0.0, FortiCare registration is enforced/mandatory on FortiGate G series models.
If the FortiGate has never been registered, the GUI will display a registration prompt and restrict access to all other GUI pages until registration is completed.
The following error is displayed on the console, preventing configuration changes on the FortiGate.
The device is not registered with FortiCare.
Any configuration change is not allowed.
In v7.4.8, on FortiGate-20XG and 90XG models, a registration prompt appears, but the devices can still be fully configured through the CLI before registration.
From v7.4.9 onward, most G-series FortiGate models enforce a FortiCare registration check, displaying a warning upon console or SSH login. Although the warning states that configuration changes are restricted, administrators can still modify interface and routing settings to obtain internet connectivity and complete FortiCare registration.
The FortiCare registration check mechanism is planned for refinement in v7.4.10 and v7.6.5, which will permit IP address configuration through the GUI before registration and introduce a manual license-upload option for air-gapped environments.
FortiCare Registration Enforce can only be disabled from the BIOS by following the steps below:
- Establish console access to the device.
- Reboot the device.
- Press any key once this message is displayed
Verifying PIRQ tables...Done.
Boot up, boot device capacity: 61057MB.
Press any key to display configuration menu...
..
[C]: Configure TFTP parameters.
[R]: Review TFTP parameters.
[T]: Initiate TFTP firmware transfer.
[F]: Format boot device.
[B]: Boot with backup firmware and set as default.
[I]: System configuration and information.
[Q]: Quit menu and continue to boot.
[H]: Display this list of options.
Enter C,R,T,F,B,I,Q,or H: I
[S]: Set serial port baudrate (will take effect on next boot).
[R]: Set restricted mode.
[T]: Set menu timeout.
[C]: Set FortiCare registration.
[I]: Display system information.
[E]: Reset system configuration.
[Q]: Quit menu and continue to boot.
[H]: Display this list of options.
Enter S,R,T,C,I,E,Q,or H:C
[1]: Not Enforce
[2]: Enforce
Enter FortiCare registration setting [2]:1
Enter S,R,T,C,I,E,Q,or H:Q
[S]: Set serial port baudrate (will take effect on next boot).
[R]: Set restricted mode.
[T]: Set menu timeout.
[C]: Set FortiCare registration.
[I]: Display system information.
[E]: Reset system configuration.
[Q]: Quit menu and continue to boot.
[H]: Display this list of options.
Enter S,R,T,C,I,E,Q,or H:Q
After this, the FortiGate will initiate its operating system within a few minutes and start loading. Following this, FortiCare registration will not be enforced, allowing users to log in without completing the registration process.
Related documents:
Steps to disable 'Register with FortiCare'
Changes in GUI behavior
Technical Tip: Common issues when registering devices to FortiCloud using FortiOS GUI (FortiGate, Fo...
|
