Fortinet Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
kandarp
New Contributor

Ideal way to replace Faulty unit with RMA unit

Hi Guys,

This is the first time for me to replace a faulty Fortigate unit ( in cluster A-A ) with new RMA device.I have some plan of action but am confused between two approaches.

Approach 1 ) Install same firmware as master, sync licences and restore config backup which was taken from faulty device and then attach network cables.

Approach 2) Go as per this document which says that I need to execute this command config system ha and configure some parameters. Once done, attach the new device in network and it will sync the config from primary. https://kb.fortinet.com/kb/documentLink.do?externalID=FD36481

Which of the two is correct or are both wrong and I am missing something else.

1 Solution
rwpatterson
Valued Contributor III

Not an HA pro, it's been awhile but I believe each way works. The benefit of the restore/connect option is that the configuration is already on the box, so the synching SHOULD take less time. I'm really not sure that the synching would take a bunch of time anyway. One thing to be really sure of is that the priority of the new device is lower (not sure if numerically lower. Do your homework on that piece) than that of the existing device. Get it wrong and the new device with no config will overwrite the master and you'll have a dead network.

Bob - self proclaimed posting junkie!
See my Fortigate related scripts at: http://fortigate.camerabob.com

View solution in original post

2 REPLIES 2
rwpatterson
Valued Contributor III

Not an HA pro, it's been awhile but I believe each way works. The benefit of the restore/connect option is that the configuration is already on the box, so the synching SHOULD take less time. I'm really not sure that the synching would take a bunch of time anyway. One thing to be really sure of is that the priority of the new device is lower (not sure if numerically lower. Do your homework on that piece) than that of the existing device. Get it wrong and the new device with no config will overwrite the master and you'll have a dead network.

Bob - self proclaimed posting junkie!
See my Fortigate related scripts at: http://fortigate.camerabob.com

kandarp

Thanks for your help !