FortiSOAR: Security Orchestration and Response software provides innovative case management, automation, and orchestration. It pulls together all of an organization's tools, helps unify operations, and reduce alert fatigue, context switching, and the mean time to respond to incidents.
This article describes a scenario when FortiSOAR login fails with the following error message: 'FSR-Auth-017: The System time is invalid. Contact support for more information.', and how to fix it.
This error occurs when the last_attempt timestamp in the database gets set incorrectly, causing the system to treat the login time as invalid.
Scope
FortiSOAR v7.0.0 onwards.
Solution
Check the system clock on FortiSOAR. If the date/time is incorrect, sync it to the current date and time.
Try logging in again after correcting the system time.
If the error persists, retrieve the user ID for the login attempt with the following command (replace <username> with the actual login ID):
PGPASSWORD=$(cat /home/csadmin/device_uuid) psql -U cyberpgsql das -c "select user_id from users where login_id='<username>'"
Clear the last_attempt field in the envc table:
PGPASSWORD=$(cat /home/csadmin/device_uuid) psql -U cyberpgsql das -c "update envc set last_attempt=null;"
Clear the last_attempt field for the specific user in the userstatus table (replace <user_id>with the actual user_id):
PGPASSWORD=$(cat /home/csadmin/device_uuid) psql -U cyberpgsql das -c "update userstatus set last_attempt=null where user_id=<user_id>;"
After resetting last_attempt, the login should succeed.
