Description |
This article describes the 'diag cdb upgrade force-retry remove-nonexistence-datasrc' command in FortiManager and explains how to use it effectively in specific scenarios. |
Scope |
FortiManager. |
Solution |
Sometimes, when address objects are deleted from the FortiManager database, the objects are not deleted from all of the firewall policies causing DB inconsistencies.
This can cause issues such as failed Policy Package installs, failed cloning of Policy Packages, etc.
In FortiManager v6.4.8 and above, the command 'diag cdb upgrade force-retry remove-nonexistence-datasrc' can be used to correct these inconsistencies.
Purpose: The primary purpose of the command is to handle situations where an object has been deleted or changed but references to the original object still exist with the FortManager database.
Usage Scenarios: Upon deleting or changing an object, references to the original object might still exist in policy packages. Running this command will help the FortiManager identify and remove the references to the deleted or changed object.
It is important to save a backup of the FortiManager before running these commands to have a rollback possibility in case of any unintended consequences.
diag cdb upgrade force-retry remove-nonexistence-datasrc
Additional Considerations:
Related articles: |