Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
dcortes
New Contributor

Created on ‎08-18-2025 04:14 AM

Fortigate 60F HA, tokens users activate error

I have a fortigate 60F in HA, I see the tokens, but when I want to assign them to users a message appears informing that the device is not registered, but if it is, the OS is 7.2.11 1740, The error appears when I want to send the email to the user

Labels:
588
0 Kudos
16 REPLIES 16
adambomb1219
SuperUser
SuperUser

Created on ‎08-18-2025 07:57 AM Edited on ‎08-18-2025 07:58 AM

Is your FortiGate registered to a Fortinet account? I would also highly recommend looking at FortiAuthenticator for tokens instead of the native FortiGate offering. Also use SAML for a much better user experience.

378
Toshi_Esumi
SuperUser
SuperUser

Created on ‎08-18-2025 08:15 AM

Verify which 60F has the token license at the support/asset page. If it's on the secondary, a token activation would fail. You might need to temporarily flip over the HA.
And if that's the case, and if you want to transfer the license to the current primary, you can ask CS team by opening a ticket. 
However, the condition is you purchased the license before Aug. 4 this year. Newly purchased licenses are not transferable.

https://community.fortinet.com/t5/FortiToken/Technical-Tip-FortiToken-Mobile-will-no-longer-support-...

Toshi

367
dcortes
New Contributor

Created on ‎08-19-2025 12:54 AM

Hello, I have accessed the portal and only in that firewall I do not see the licenses section, then I execute the show user fortitoken command from the fw cli and I see the tokens, 

 

2025-08-19 09_19_50-Editor de imagen de Greenshot.png

and when I want to assign one of the tokens I get this error

2025-08-19 09_50_46-FortiGate - Pa.png

315
0 Kudos
Toshi_Esumi
SuperUser
SuperUser

Created on ‎08-19-2025 01:07 AM

Which FW you didn't see the license at the portal? Primary or secondary? You can see which is primary and which is secondary under System->HA in GUI, or "get sys ha status" at the bottom in CLI. Check the S/N there for primary and secondary.
The config under "config user fortitoken" are the same for both primary and secondary because it's syncing by HA sync regardless that unit has a license or not. That part wouldn't tell if the primary has the license or not.

Toshi

307
0 Kudos
dcortes
New Contributor
In response to Toshi_Esumi

Created on ‎08-19-2025 01:20 AM

I see this2025-08-19 10_15_03-Asset Management.png

I see general, version & update, it has cluster and entitlement, but I don't see licenses, but in the rest of the devices that I have registered, that window appears

298
0 Kudos
Toshi_Esumi
SuperUser
SuperUser
In response to dcortes

Created on ‎08-19-2025 01:42 AM

This is not a regular 60F. I've never seen this model name "FortiGate 60F HA".
Mine shows at the asset page as just "FortiGate 60F". 
Probably nothing from what I said would apply to this model.

Toshi

282
0 Kudos
dcortes
New Contributor
In response to Toshi_Esumi

Created on ‎08-19-2025 03:55 AM

apparently fortinet sells a fortigate package in HA, in this case the individual products are fortigate 60F, from what I understand it is cheaper to buy it this way, instead of buying these devices separately, the issue is that when buying it this way, all activation is done with a virtual serial instead of with the "physical" serials

260
0 Kudos
Toshi_Esumi
SuperUser
SuperUser
In response to dcortes

Created on ‎08-19-2025 10:02 AM Edited on ‎08-19-2025 10:03 AM

Thanks @dcortes for the info. I never knew the product is "virtual". Then the real primary device needs to have the token license. Does it?
Again, you have to get in the real device to check which is the primary.

Toshi

221
0 Kudos
Markus_M
Staff & Editor
Staff & Editor

Created on ‎08-19-2025 01:44 PM

Please check this documentation:

https://docs.fortinet.com/document/fortigate/7.4.0/new-features/246857/single-fortiguard-license-for...

It describes a single license for a cluster of FortiGates. Is that the case here?

- Markus
199
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.