Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
syao
Staff & Editor
Staff & Editor

Created on ‎12-03-2025 02:37 AM

Article Id 421344

Technical Tip: How to manually update Industrial / Operational Technology (OT) database in FortiGate

Description This article describes how to manually update the Industrial / Operational Technology (OT) database in FortiGate through GUI.
Scope FortiOS v7.2 or above
Solution

Download the Industrial Definition database from support.fortinet.com OS7.2'.0_XXXXX.ISDB(MD5)'. Go under Support -> Service Updates, select Product set to FortiGate and Version set to 7.2.0.

 

Industrial_DB-Download.png
In FortiGate, go to System -> FortiGuard -> Expand Intrusion Prevention -> In IPS definitions, select Actions, upgrade Database -> Upload, and select the file.

 

fortiguard-7.2.png
Refresh the page and check the Industrial DB version in the FortiGuard page.

 

fortiguard-7.2-after.png

 

The Operational Technology (OT) Security Service is available as an 'Industrial Security Service' in v7.4.0 and earlier Industrial Security Service to Operational Technology Security , this is broken into three components in the 7.4.0 and above versions:

  • OT Threat Definitions.
  • OT Detection Definitions.
  • OT Virtual Patching Signatures.

 

 

To manually update the Operational Technology (OT) Security Service database, follow the steps:

 

Download the following files from support.fortinet.com:

  • OS7.X.0_XXXXX.ISDB(MD5) for OT Threat Definitions
  • OS7.X.0_XXXXX.OTDB(MD5) for OT Detection Definitions
  • OS7.X.0_XXXXX.OTDP(MD5) for OT Virtual Patching Signatures


Go under Support -> Service Updates, select Product set to FortiGate and Version set to 7.4.0 or 7.6.0

 

Industrial_DB-Download-7.6.png

 

In FortiGate, go to System -> FortiGuard -> Expand Operational Technology (OT) Security Service -> Upgrade Database -> Upload and select the file.

 

fortiguard-7.4.png

 

Refresh the page, check the Operational Technology (OT) Security Service DB version in the FortiGuard page.

 

fortiguard-7.4-after.png

 

To check the version in the CLI:

 

For v7.2 :

 

Lotus-kvm27 # diagnose autoupdate versions | grep -A 6 "Industrial"
Industrial Attack Definitions
---------
Version: 34.00124 signed
Contract Expiry Date: Tue Mar 3 2026
Last Updated using manual update on Tue Dec 2 13:46:03 2025
Last Update Attempt: n/a
Result: Updates Installed


For v7.4:

 

preve-kvm35 # diagnose autoupdate versions | grep -A 6 OT
OT Threat Definitions
---------
Version: 34.00124 signed
Contract Expiry Date: Mon Mar 2 2026
Last Updated using manual update on Tue Dec 2 07:08:40 2025
Last Update Attempt: n/a
Result: Updates Installed
--
OT Detect Definitions
---------
Version: 34.00123 signed
Contract Expiry Date: Mon Mar 2 2026
Last Updated using manual update on Tue Dec 2 07:09:18 2025
Last Update Attempt: n/a
Result: Updates Installed
--
OT Patch Definitions
---------
Version: 34.00123 signed
Contract Expiry Date: Mon Mar 2 2026
Last Updated using manual update on Tue Dec 2 07:09:48 2025
Last Update Attempt: n/a
Result: Updates Installed

 

Related articles:
Technical Tip: Configuring and Using 'Operational Technology (OT) Security Service

Technical Tip: How to update Operational Technology (OT) Security Service database signatures
Troubleshooting Tip: Industrial database fails to update
117
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.