Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
msingh_FTNT
Staff & Editor
Staff & Editor

Created on ‎01-18-2022 10:52 AM Edited on ‎09-03-2025 06:28 AM By Staff

Article Id 203376

Technical Tip: Fortinet Support Tool, Google Chrome Extension for troubleshooting GUI issues

Description

 

This article describes how to collect debug information to troubleshoot web management interface issues.

 

Scope

 

FortiGate v6.2.2+, v6.4.0+, v7.0.0+, v7.2.0+, v7.4.0+, v7.6.0+.

Requires Google Chrome or a Chromium-based browser that has access to the Google Chrome store. 
See this article for non-Google browsers: Technical Tip: How to install the Fortinet Support Tool extension on Edge and Brave.

Solution

 

For troubleshooting issues related to the web management interface of FortiGate (GUI), the debug level for the HTTPS daemon is useful, which can be retrieved with the commands below.

 

diagnose debug reset

diagnose debug console timestamp enable

diagnose debug application httpsd -1

diagnose debug enable

 

To stop the debug:

 

diagnose debug disable

diagnose debug reset


However, a Google Chrome Extension can be leveraged to collect several other pieces of information at once, which may be extremely helpful for troubleshooting.

 

This Google Chrome extension is called 'Fortinet Support Tool' and it is publicly available on the Google Chrome Web Store.

Fortinet Support Tool - Google Chrome Extension 

 

It communicates with a FortiGate via the Chrome extension API and may collect the following during a capture:

  1. A video recording.
  2. FortiGate meta information.
  3. Client and browser meta information.
  4. HTTP network logs.
  5. Various daemon debug logs (cmdb, node, httpsd, csfd, miglogd, sslvpnd).
  6. JavaScript console logs.
  7. FortiGate memory and CPU usage over time.
  8. Client memory and CPU usage over time.

 

Note.
Some daemons may only be available with FortiOS firmware v7.0 and above.


Creating a Capture.
Fortinet Support Tool is currently available for the Google Chrome browser and FortiGate running firmware version 6.2.2 and above.

To create a new capture, log in to a FortiGate and locate the extension added previously at the top right section of the browser, as shown below. The red icon indicates FortiGate is ready to begin capture.

 

CarlosColombini_0-1671931401229.png

 

Note.

The administrator profile must have read/write access to at least the 'System' category.

 

CarlosColombini_1-1671931998624.png

 

Select the icon, and a dropdown will appear with information on the current FortiGate.
Select the button labeled 'New Capture'.

 

CarlosColombini_0-1671984566350.png

 

After selecting 'New Capture', a new window will be presented with a form with options to choose from, such as 'File Name', 'Device Configuration', and daemons to have debug enabled.

 

CarlosColombini_1-1671984925216.png

 

Google Chrome Extension tool.JPG

 

After selecting 'Start Capture', choose the screen on which the issue will be replicated, and select 'Share'. The header within the FortiOS GUI will now display a red timer indicating the duration of the capture.

 

CarlosColombini_3-1671985088480.png


Note.
The maximum duration of capture is 10 minutes.

 

With the capture now running, the issue can be reproduced, and data will be gathered based on options previously selected. 

At any point in time, the capture can be stopped by selecting the red button from the above image. Once capture is ended, a zip file will be downloaded.

 

Viewing a Capture.

Once a capture has been created, it can be viewed at any time by selecting the 'View Capture' button in the Fortinet Support Tool extension dropdown.

 

CarlosColombini_0-1671990518181.png


Note.

The icon does not need to be read to view a capture.

A new tab will now open in the browser. Select the capture zip file or drag and drop the file into this page.

 

CarlosColombini_1-1671990658225.png

 

After selecting a capture file, a dashboard will be presented with information about the capture.

 

CarlosColombini_2-1671990852118.png

 

In the top left corner is a video of the capture, bottom left is a resource usage chart, and on the right-hand side is either general information or a log stream.

 

From the dropdown on the right-hand side, the default option is 'Capture Summary', but it contains the options presented in the image below.

 

CarlosColombini_3-1671991013456.png

 

Note.

The content of daemon logs will show logs up until the current video time has elapsed.

Play or drag the video timeline to show more logs as the video progresses.

This allows for the easier association of a visual event with a particular log entry.

 

CarlosColombini_4-1671991344298.png

 

Note.

Starting from FortiOS 7.6.3 version a new feature was added , the Fortinet Support Tool for Capturing Incidents. It captures the real-time debugging using a REST API key generated on the FortiGate. The tool can run for up to 48 hours to increase the chance of capturing incidents. For more information refer to Fortinet Support Tool for capturing incidents



Related article:
Technical Tip: Install Fortinet Support Tool Chrome extension without internet access 

30177
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.