Refer to the article below on how to upgrade FortiGate via FortiManager: Technical Tip: How to upgrade FortiGate using FortiManager

During the upgrade process, multiple tasks will be triggered within FortiManager & FortiGate simultaneously:

FortiManager:

1. Check and get the image from local or FortiGuard.
2. Check the disk of FortiGate.
3. Push Image to FortiGate. (While pushing the image FortiGate reboot) -> FGFM tunnel down.
4. After FortiGate reboot (FGFM tunnel UP) -> FortiManager auto-retrieve the config status.
5. Task complete.

FortiGate:

1. Get the image from FortiManager (Image with a valid RSA signature loaded in the Event log).
2. FGFM tunnel inactive (Central-Management).
3. FortiGate reboot.
4. FGFM tunnel active (Central-Management).

The following CLI commands provide the summary report of the upgrade tasks:

diagnose fwmanager report list-device-report <adom_name> <----- Provide a report of FortiGate.

[
{
"end-time": 1745395745,
"name": "FortiGate-81F",
"oid": 299,
"package-status": 0,
"skip-path": 0,
"start-time": 1745395354,
"taskid": 18,
tasks": [
{
"current_version": "7.4.4-b2662", <----- FortiGate Firmware version before UPGRADE.
"health_check": [
{
"command": "get system status",
"result": "FortiGate-81F get system status\nVersion: FortiGate-81F v7.4.6,build2726,241210 (GA.M)..............
}, {
"command": "diagnose sys flash list",
"result": "FortiGate-81F diagnose sys flash list\nPartition Image TotalSize(KB) Used(KB) Use% ................
},
{
"command": "diagnose debug config-error-log read",
"result": "FortiGate-81F diagnose debug config-error-log read\n"
},
{
"command": "diagnose hardware sysinfo memory",
"result": "FortiGate-81F diagnose hardware sysinfo memory\nMemTotal: 3806308 kB\nMemFree: 2301324 ...................
},
{
"command": "diagnose debug crash read",
"result": "FortiGate-81F diagnose debug crash read\n1: 2025-03-24 09:05:06 the killed daemon is \/.......................
}
],

"package-status": 0, >>>>>>>>>>>>>>> Result After Firmware has upgrade
"platform": "FortiGate-81F",
"product": 1,
"profile_name": "tutu",
"result": 0,
"serial": "FGTXXXXXXXXXXXXX",
"sub_tasks": [
{
"config": {
"change": 1,
"diff": "config firewall service custom\nmove \"FTP\" after \"ALL\"\nmove \"FTP_GET\" after \"FTP\"\nmove \"FTP_PUT\" after \"FTP_GET\"\nend\n"
},
"end_revision": 3,
"end_time": 1745395687,
"end_version": "7.4.6-b2726",
"result": 0,
"retrieve_end_time": 1745395687,
"retrieve_start_time": 1745395646,
"start_revision": 1,
"start_time": 1745395386,
"start_version": "7.4.4-b2662",
"task_line": "FortiGate-81F(7.4.4-b2662->7.4.6-b2726)"
}
],
"target_version": "7.4.6-b2726",
"upgrade_path": [
"7.4.6-b2726"
]
}
]
}
]

diagnose fwmanager report device-report-summary <adom_name> <----- Show the FortiGate firmware version before and after.

preve-kvm05 # diagnose fwmanager report device-report-summary lala
Total number: 1
name          oid taskid   from        to        start-time       end-time        profile
FortiGate-81F 299  18   7.4.4-b2662 7.4.6-b2726 2025-XX-XX 16:02 2025-XX-XX 16:09 tutu