In v7.6.0, if a manual Security Rating report is required outside the set run schedule, the following command can be used:

diagnose report-runner-v2 security-rating trigger

Example CLI Output:

FGT # diagnose report-runner-v2 security-rating trigger
Successfully triggered full Security Rating check suite. Please give time for all the checks to finish running.

To clear all previous Security Rating v2 results, the following command can be used:

diagnose report-runner-v2 security-rating clean

Example CLI Output:

FGT # diagnose report-runner-v2 security-rating clean

Deleted Security Rating v2 results.

Note:

In previous versions, the following command was used:

diagnose report-runner trigger security-rating-reports

At this time, the command is still available in the CLI; however, it is being deprecated and will not work. It is expected to see an error:

FGT # diagnose report-runner trigger security-rating-reports
Command fail. Return code -1

Note:

Starting from v7.6.2, physical FortiGates with 2GB of RAM no longer support Security Rating. For more information, refer to the release notes: 2 GB RAM FortiGate models no longer support Security Rating and Security Fabric topology