Created on
11-10-2022
10:52 PM
Edited on
01-12-2025
01:00 AM
By
Anthony_E
Description |
This article describes how to fix the error 'Image upgrade failed. Firmware image is not valid - FortiGate HA firmware upgrade failed'. In this case, the Primary and Secondary FortiGates have mismatching firmware versions.
Using this method will result in total downtime for the entire network as both FortiGates will be rebooted. This method also assumes that HA Management Interface is configured so that the GUI of the FortiGate with the lower firmware version can be accessed.
This method WILL cause Total Service Outage of both firewalls. Read all the steps first before proceeding to execute them. |
Scope | Fortigate HA - Applicable for Active-Passive and Active-Active. |
Solution |
Note: If there is no management IP configured for access, SSH into the FortiGate on the higher firmware version through the current Primary.
exec ha manage ?
exec ha manage <id> <username>
Here Username is administrator name used to log into FortiGate. Press Enter, type the password in, and then press Enter again. See Technical Tip: Managing individual cluster units with the CLI command 'execute ha manage' .
Below version 7.2.x: Go to System -> Firmware -> Browse and Upload the firmware.
Version 7.2.x onwards: Go to System -> Fabric Management -> Select the FortiGate and select Upgrade -> File Upload -> Browse and Upload the firmware.
exec reboot
An alternative option is to change the 'Security level' to '0' on the Primary and Secondary FortiGates and perform the upgrade again. However, this method requires console access.
To change the security level: BIOS-level signature and file integrity checking during downgrade
It is recommended to set the Security level back to '2' after the upgrade. |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.