|
Updating a FortiGate cluster with a new support contract requires the same process as updating a contract for any other standalone FortiGate. The only difference is that it is necessary to purchase a contract for each other cluster unit.
All members of an HA cluster need to have valid Support contracts and valid licenses for FortiGuard services. It is not sufficient to only have coverage for the Master unit alone.
Also, in FortiGate VM firewalls, mismatched license resources such as a differing CPU or differing memory limits between units in the HA cluster may trigger resource limit errors.
See this article for more information on how to check for such issues.
If a new contract is only purchased for the primary device, the GUI will reflect the contract of any other subordinate unit that will expire first.
It is also necessary to disconnect the HA cable (or shut down the Secondary firewall) to reflect the license information on the Firewall GUI. After doing the same on the Secondary firewall, it should join the cluster again to form the HA.
Note:
Make sure that the starting dates are valid in the contract. Sometimes, both devices show entitlement linked, although the dates might represent service starting next month or a year.
Related article:
Technical Tip: Fortinet product registration and bulk registration.
|
