Package Management - Service Status -> Never updated
we have a problem using FortiManager to manage a FortiGate60D (Fortimanager and Fortigate both running 5.2.0, Fortimanager is virtual and with a testing license).
Under Fortiguard -> Package Management -> Service Status the FGT60D is listed but with status "Never Updated".
Other synchronisation like config and policy work properly.
Under "Licensing Status" the device is listed with valid license for each point.
On the Fortigate license information page web filtering is declared as unreachable.
Unfortunately, we don't have any experience with FortiManager so far. Therefore another short question: Is it necessary to configure the FortiGate to use Fortimanager to get AV, IPS and Webfilter updates or is this done with installing the device on FortiManager?
Not that familiar with the 5.2 codebase, but as far as I am aware the Fortigate should be able to fetch AV/IPS updates directly from the FortiGuard servers, providing it can use DNS to resolve their FQDNs into IP addresses. The Fortigate will also need a valid FortiGuard subscription -- you can check the License Information widget on the the dashboard for this.
If the Fortiate can not reach the FortiGuard servers, confirm it has valid DNS settings and that the default port 53 (alternate port 8888) are not blocked. There are several forums posts on how to troubleshoot FortiGuard related issues, such as this thread or official Fortient documentation.
You can choose to use the FortiManager for FortiGuard updates, providing you have previously configured it to fetch these updates itself. (See attached pic.)
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.