FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
tpatel
Staff
Staff
Article Id 399998
Description This article describes that private-data-encryption is not working after upgrading FortiGate to v7.6.3.
Scope FortiGate.
Solution

After upgrading FortiGate to v7.6.3, setting private-data-encryption to enable in the global settings is not working. It gives the following error.


FGT# config system global

FGT(global) # set private-data-encryption enable
command parse error before 'private-data-encryption'
Command fail. Return code -61

 

Starting from v7.6.3, the private data encryption feature will be supported on devices that contain a Trusted Platform Module (TPM).

 

To check if the FortiGate device has a TPM, verify all the following commands exist. Otherwise, the platform does not support it.


diagnose hardware deviceinfo tpm
diagnose hardware test tpm


Additionally, the following command will also confirm if a TPM is detected on the device. The output line 'tpm: detect' confirms the presence; if this output line is absent, the device is not equipped with a TPM.

FortiGate-91G # diagnose hardware test info
List of test cases:
bios: sysid
<.....>
disk: file-data
disk: file-data2
disk: hdd-block-wrv
disk: file-varlog
led: sys-led
led: nic-led
disk: disk
tpm: detect
ble: detect

 

Related documents:

Managing FortiGates with private data encryption
Trusted platform module support