Help
FortiSIEM
FortiSIEM provides Security Information and Event Management (SIEM) and User and Entity Behavior Analytics (UEBA)
lucianag22
Staff
Staff

Created on ‎05-14-2024 09:19 AM Edited on ‎06-07-2024 03:06 AM By Staff

Article Id 313967

Technical Tip: How to upgrade collectors from the FortiSIEM Image Server Page

Description

This article describes how to upgrade the collectors from the FortiSIEM Image Server Page. Since version 6.2.0, the collector upgrading node is only supported by the page Image Server from FortiSIEM GUI. Upgrading by SSH is not supported.
Scope FortiSIEM collector nodes.
Solution

To upgrade the collector node to the same or lower version of the supervisor, follow these steps:

  1. Check connectivity from the Supervisor node to the URL update.fortiguard.net by port 443 because FortiSIEM communicates with FortiGuard to verify the checksum of the image. If the supervisor is unable to reach update.fortiguard.net, the process will fail.
  2. Make sure the collector can resolve the hostname of the supervisor because the hostname will be used to build the URL to download the image from the collector node.
  3. Check that the collector can access the following URLs through port 443: os-pkgs-cdn.fortisiem.fortinet.com and os-pkgs-r8.fortisiem.fortinet.com.
  4. Download the target Upgrade Image from the Fortinet Support Site. For example, FSM_Upgrade_All_7.1.5_build0181.zip.
  5. Go to ADMIN -> Settings -> Systems -> Image Server.
    • Under Collector in the Version field, enter the version. For example, 7.1.5.
    • Under Collector, choose Select File and Upload File.
    • The following SQL can be used to check the ImageSetup task was completed:

psql phoenixdb phoenix -c "SELECT type, progress from ph_task where type = 'ImageSetup';"

6. Go to ADMIN -> Health -> Collector Health.

  • From Columns, select the Download Status and Version.
  • Select the Collector(s), go to the Action drop-down list, and select Download Image.
  • The following SQL can be used to check the Download Image task was completed.

psql -U phoenix phoenixdb -c "SELECT progress from ph_task where type='DownloadImage';"

 

  • Select the Collector(s) to upgrade.
  • From the Action drop-down list, select Install Image.
  • The following SQL can be used to check the Upgrade Image task was completed.

psql -U phoenix phoenixdb -c "SELECT progress from ph_task where type='UpgradeImage';"

  1. The collector will be rebooted after the upgrade is successful. Go to Admin -> Health -> Collector Health to check it is running the upgraded version and that all processes are up and running.
  2. If the upgrade fails, download the following files from the collector, open a ticket with technical support, and provide the files:

/opt/phoenix/log/collector-upgrade.log

/usr/local/upgrade/logs/ansible.log

 

Related document:

Image Server Settings - Fortinet Help.
877
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.