The most common error on the GUI login with the licensing is 'FSR-Auth-003: License Entitlement Sync failed. Ensure that https://globalupdate.fortinet.net is accessible from your environment. If the issue still persists, contact support.'

It could be due to multiple reasons:

1. Make sure the FortiSOAR license server is reachable from the FortiSOAR box:

curl -v -k https://globalupdate.fortinet.net

2. Disable SSL inspection at Proxy for https://globalupdate.fortinet.net.

3. The following command can also be used to test the connectivity with the licensing server.

java -jar /opt/cyops-auth/bin/fdnclient.jar <serial_no> <device_uuid> https://globalupdate.fortinet.net

If the global update is reachable via Proxy only then export the below variables before running the above command to test the connectivity:

export url=<proxy ip/fqdn>

export port=<proxy port>

export username=<proxy user>

export password=<password>

4. In the case of the Docker environment:  URL, port, username, and password must be set in 'docker-compose YAML environment' and '/etc/environment'.

"docker environment"
url=<proxy ip/fqdn>
port=<...>

And:

"/etc/environment"
export url=<proxy ip/fqdn>
export port=<proxy port>
export username=<proxy user>
export password=<password>

Note:

Nginx listens 443 SSL must not be changed due to internal API calls.

5. In case, there is a firewall policy or IP filtering for the outbound traffic, the policy should allow the source address of the FortiSOAR to the destination FQDN of globalupdate.fortinet.net
6. For more details, review the below logs:

/var/log/cyops/cyops-auth/das.log