Also, Why it also changed the hostname ?

These are the following logs generated for User daemon-admin:

User daemon-admin changed hostname global setting to VW-02 from cmdbsvr

User daemon-admin changed timeout global setting to 60m from cmdbsvr

Kindly share the reasons for the above logs...

Hi @Shantilal1998 .

1) Is VW-02 a new hostname or it is an existing hostname?

2) Was the timeout global setting set to 60m before?

3) Is there any timestamp with those two logs?  And is there a system log for system rebooting?  

If yes for both, I guess the timestamp of the system reboot is earlier than those two "User daemon-admin" logs.

1) Is VW-02 a new hostname or it is an existing hostname?

    Yes, Hostname is same as before.

2) Was the timeout global setting set to 60m before?

Yes.

3) Is there any timestamp with those two logs?  And is there a system log for system rebooting?  

1.22 AM ---> the firmware was upgraded

1.26 AM ---> User daemon-admin changed hostname global setting to VW-02 from cmdbsvr

1.26 AM ---> User daemon-admin changed timeout global setting to 60m from cmdbsvr

1.26 AM --> The firewall was reboot..

And if the reboot is earlier then also what is the meaning of these events ?

Hi @Shantilal1998 ,

All logs with "User daemon-admin" are due to system reboot.  And the system reboot was due to the automatic firmware upgrade.

When the system reboot is done, FGT system is using daemon-admin (system level admin account with full permissions) to copy and restore some/all configurations from the cmdb server.   The cmdb server is a daemon for saving the configuration.

That means you don't have to worry about the logs generated with daemon-admin.

But why only timeout and hostname ? any specific reason...