Description
This article describes how to fix an error that occurs when trying to upgrade the ADOM. The error message requests enabling at least one port on the SSH inspection profile.
This article describes how to fix this error.
Solution
In order to get all the option visible on FortiManager GUI, enable 'CHECK ALL' under Tools sections.
All the SSH/SSL inspection profiles here for the respected ADOM will be found.
Find the problematic SSL/SSH INSPECTION profile and enable 'Inspect all ports' or 'at least one port'.
If above solution does not work, then try below command to fix this issue.
To access an ADOM that is not supported, it is necessary to reset that ADOM and assign a version that is supported. Resetting the ADOM will delete all the config. present in the ADOM.
Command to reset the unsupported ADOM and upgrade to newer version.
To access an ADOM that is not supported, it is necessary to reset that ADOM and assign a version that is supported. Resetting the ADOM will delete all the config. present in the ADOM.
Command to reset the unsupported ADOM and upgrade to newer version.
execute reset adom-settings <adom> <version> <mr>
Example.
execute reset adom-settings <adom ID> 6 2
<Adom ID> can be found by running the command (di dvm device list).
6 = Major release
2 = Minor release
2 = Minor release
If the root Adom ID is 3 then the command to reset that root ADOM is:
execute reset adom-settings 3 6 2
This command is applicable to upgrade other default ADOMs like FortiCarrier etc.
