Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
oarslan
Staff
Staff

Created on ‎02-21-2022 01:50 AM Edited on ‎07-20-2025 10:09 PM By Community Manager

Article Id 205211

Technical Tip : How To Upgrade Application Control Definitions Manually

Description This article describes how to update application control definitions manually.
Scope FortiGate.
Solution

By default, if the FortiGate has internet connectivity and application control is used, the database will be updated automatically as part of the scheduled FortiGuard updates. If this is not working, refer to Technical Tip: Application Control Signatures are not updated automatically

 

If necessary, application control definitions can be upgraded manually, as described below. Before upgrading, it is possible to check current definitions with the 'diagnose autoupdate versions' command.

 

before.png

 

To download the latest update manually, go to 'support.fortinet.com' -> Support -> Service Updates.

 

app.png

 

Download the Application Control Definition by choosing the Fortinet Product and the FortiOS version matching the firewall's current Minor Version. Minor versions are firmware branches, such as v6.4, v7.0, v7.2, and v7.4.

Most service updates are maintained under 'vX.Y.0', and this is the correct OS version to select in most cases. If there are multiple OS Versions for the current minor version and it is not clear which OS version to select, check the GA version (7.6.0, 7.4.0, 7.2.0..) and download the latest 'Application Definition' file.


app2.png


Because of an upcoming DLP database enhancement, the v7.4.8 and v7.6.3 OS Versions are added to the dropdown as of Q1 2025, but only include a new version of the DLP database. Select v7.4.8 or v7.6.3 OS versions if DLP signatures is required for v7.4.8, v7.6.3, or later. For other definitions, such as Attack Definition, Application Definition and others, select the GA version of the firmware (v7.6.0, v7.4.0, v7.2.0..).

v7_6_3_dropdown.png


On the FortiGate GUI, browse System -> FortiGuard -> Application Control Signatures -> Actions -> Upgrade Database and upload the definition file downloaded from the support site.

 

genel.png

 

After the upgrade, verify by taking the 'diagnose autoupdate versions' output again and checking the version number.

 

after.png

 

The procedure outlined above can be used to manually update other firewall databases as well, including antivirus signatures (Virus Definitions) and IPS signatures (Attack Definitions). For a list of database abbreviations and names, see Technical Tip: Deciphering FortiGuard database abbreviations and subscriptions/services
19345
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.