Description
This article describes how to update FortiManager managed devices FortiGuard service status.
Scope
FortiManager.
Solution
In some production environments, FortiManager is located in a closed network environment and is unable to communicate with the FortiGuard server directly.
In this case, the entitlement file is uploaded to FortiManager to update the Licensing status. However, the entitlement file is unable to update the service status.
As a result, it will show as unknown as shown in the diagram below:
In order to resolve the status, there are multiple solutions. However, ensure the configuration below is complete in FortiManager before proceeding with solutions.
In FortiManager -> FortiGuard -> Settings, enable AntiVirus and IPS Service, and select the Major version of the FortiGate.
Solution 1:
This solution requires updates from FortiGate. Ensure the FortiGate device is able to reach the FortiGuard server at port 443.
In the FortiGate, run the CLI commands below:
diagnose debug application update -1
diagnose debug enable
execute update-now
Solution 2:
This solution is completed from FortiManager. Follow the steps below:
- In FortiManager -> FortiGuard -> Settings, choose upload Options for FortiGate/FortiMail and upload the file under Packages and Database.
Note:
After the package is uploaded successfully, the task complete windows will be shown:
After the solutions provided above are executed, the user can verify the status again as shown below:
Users can find the latest packages imported into the FortiManager FortiGuard package.
Related documents:
