Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Vedaant
Staff
Staff

Created on ‎01-03-2025 10:40 AM

Article Id 366813

Troubleshooting Tip: FortiGate not joining HA-Cluster due to an HA password mismatch

Description

This article describes how to troubleshoot FortiGate not joining HA Cluster due to an HA password mismatch.
Scope FortiGate, all versions.
Solution

Run the following command to verify why FortiGate is not joining the HA cluster.

 

diagnose debug application hatalk  -1

diagnose debug application hasync -1   

diagnose debug console timestamp enable

diagnose debug enable
diagnose debug disable <- To disable the debug commands.

One of the possible reasons FortiGate does not join the HA cluster is due to an HA password mismatch.


HA password mismatch.PNG
Enter the correct password on FortiGate on the Primary or Secondary firewall (the password should match for both the Primary and Secondary firewalls).


ha password change.PNG
To change the password from the CLI:


config system ha

    set password “ ha_password ”
end

After entering the correct password, FortiGate will join the HA cluster.
645
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.