Description | This article describes that TCL script execution failed after updating the admin password in a FortiGate. |
Scope | FortiManager. |
Solution |
According to the following documentation: https://docs.fortinet.com/document/fortimanager/7.2.2/administration-guide/914165 TCL Scripts use SSH to tunnel through FGFM and they require SSH authentication to do so.
After updating and installing the FortiGate's admin password through Install Wizard, the following error may be presented when running a TCL script against it:
Run the following debugging command while the script is running, and the following error will appear: 'ssh authentication fail':
dia deb app dmworker -1 dia deb en
It is also possible to run the following debug command on Fortigate to confirm that the error is due to SSH authentication failure:
dia deb app sshd -1 dia deb en
The following error should appear:
In order to resolve this, it will be necessary to 'right-click' the FortiGate name under Managed Devices, then select Edit to update the device's admin password:
Once done, it will be possible to run the TCL script against it with the new admin password:
|
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.