Description | This article explains how to upgrade FortiGate through FortiManager. |
Scope | Any supported FortiGate, FortiManager version. |
Solution |
Prerequisite: The FortiGate needs a valid upgrade license (FMWR license). To check the FortiGate license on FortiManager, use the following FortiManager CLI command:
diagnose fmupdate fds-dump subs
Upgrade a FortiGate:
Note: The new layout as of version 7.4 is shown below:
Alternatively, upgrade using a Firmware Template:
Solution for FortiGates in HA cluster, which are being managed by the FortiManager:
The FortiGate HA is upgraded the same way as the FortiManager as a standalone FortiGate. The Firmware template might seem a little confusing as the 'Assign Device' section only shows the primary FortiGate and not the secondary cluster member. However, that is by design as the FortiGate is a HA cluster and FortiManager always communicates with the primary member. The secondary member should get upgraded automatically if the HA is in good shape. When performing an upgrade of FortiGate via FortiManager, it is important to run debug from the FortiManager and FortiGate sides.
Debug from FortiManager:
diagnose fwmanager fwm-log <----- Live debug when upgrading FortiGate.
Debug from FortiGate: (Possibly run through the console):
Lotus-kvm05 # diagnose debug cli 8 Lotus-kvm05 # diagnose debug en
The task Job will be displayed from the Task Monitor at FortiManager.
Complete task from FortiManager:
Troubleshooting:
The following CLI commands are used for troubleshooting firmware issues from FortiManager:
diagnose fwmanager fwm-log
Related articles: Troubleshooting Tip: FortiGate failed to upgrade using the Firmware Template Technical Tip: How to check the FortiGate upgrade path on FortiManager Technical Tip: How to download and import firmware images into FortiManager Technical Tip: How to perform scheduled upgrade for FortiGates using FortiManager |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.