Fortinet black logo

New Features

7.0.0
7.4.0
7.2.0
7.0.0
6.4.0
6.2.0

One-time automatic upgrade to the latest FortiSwitch firmware 7.0.4

One-time automatic upgrade to the latest FortiSwitch firmware 7.0.4

Starting in FortiOS 7.0.0, administrators could use the FortiOS CLI to upload the FortiSwitch firmware and then configure the managed FortiSwitch units to be automatically upgraded with the uploaded firmware when the switches were authorized by FortiLink. See Automatic provisioning of FortiSwitch firmware upon authorization.

Starting in FortiOS 7.0.4, administrators no longer need to upload the FortiSwitch firmware. Now administrators can configure the managed FortiSwitch units to be automatically upgraded to the latest FortiSwitchOS version available in FortiGuard when the switches are authorized by FortiLink. If the FortiSwitch units are already running the latest version of FortiSwitchOS when they are authorized, no changes are made.

Tooltip

  • You cannot use the one-time automatic upgrade with the automatic provisioning feature. When firmware-provision-latest is set to once, the firmware-provision and firmware-provision-version commands are unset.

  • If a FortiSwitch unit is being upgraded when the one-time automatic upgrade is configured, the upgrade in progress is paused until the one-time automatic upgrade is completed.
To set up the one-time automatic upgrade of the managed FortiSwitch firmware:
  1. On the FortiGate device, configure automatic provisioning:

    config switch-controller global

    set firmware-provision-on-authorization enable

    end

    By default, the set firmware-provision-latest command is set to disable under config switch-controller managed-switch before the FortiSwitch unit is authorized by the FortiGate device.

  2. On the FortiGate device, authorize the FortiSwitch unit.

    config switch-controller managed-switch

    edit <FortiSwitch_serial_number>

    set fsw-wan1-peer <FortiLink_interface_name>

    set fsw-wan1-admin enable

    end

    Authorizing the FortiSwitch unit changes the setting of the set firmware-provision-latest command to once under config switch-controller managed-switch.

  3. When the status of the managed FortiSwitch unit is “Authorized/Up,” the FortiGate device downloads the latest supported version of FortiSwitchOS from FortiGuard and then upgrades the switch.
  4. The setting of the set firmware-provision-latest command is changed to disable under config switch-controller managed-switch.
Tooltip

Instead of enabling firmware-provision-on-authorization, you can leave the command at its default setting (set firmware-provision-on-authorization disable) and change the setting of firmware-provision-latest to once.
Previous
Next

One-time automatic upgrade to the latest FortiSwitch firmware 7.0.4

Starting in FortiOS 7.0.0, administrators could use the FortiOS CLI to upload the FortiSwitch firmware and then configure the managed FortiSwitch units to be automatically upgraded with the uploaded firmware when the switches were authorized by FortiLink. See Automatic provisioning of FortiSwitch firmware upon authorization.

Starting in FortiOS 7.0.4, administrators no longer need to upload the FortiSwitch firmware. Now administrators can configure the managed FortiSwitch units to be automatically upgraded to the latest FortiSwitchOS version available in FortiGuard when the switches are authorized by FortiLink. If the FortiSwitch units are already running the latest version of FortiSwitchOS when they are authorized, no changes are made.

Tooltip

  • You cannot use the one-time automatic upgrade with the automatic provisioning feature. When firmware-provision-latest is set to once, the firmware-provision and firmware-provision-version commands are unset.

  • If a FortiSwitch unit is being upgraded when the one-time automatic upgrade is configured, the upgrade in progress is paused until the one-time automatic upgrade is completed.
To set up the one-time automatic upgrade of the managed FortiSwitch firmware:
  1. On the FortiGate device, configure automatic provisioning:

    config switch-controller global

    set firmware-provision-on-authorization enable

    end

    By default, the set firmware-provision-latest command is set to disable under config switch-controller managed-switch before the FortiSwitch unit is authorized by the FortiGate device.

  2. On the FortiGate device, authorize the FortiSwitch unit.

    config switch-controller managed-switch

    edit <FortiSwitch_serial_number>

    set fsw-wan1-peer <FortiLink_interface_name>

    set fsw-wan1-admin enable

    end

    Authorizing the FortiSwitch unit changes the setting of the set firmware-provision-latest command to once under config switch-controller managed-switch.

  3. When the status of the managed FortiSwitch unit is “Authorized/Up,” the FortiGate device downloads the latest supported version of FortiSwitchOS from FortiGuard and then upgrades the switch.
  4. The setting of the set firmware-provision-latest command is changed to disable under config switch-controller managed-switch.
Tooltip

Instead of enabling firmware-provision-on-authorization, you can leave the command at its default setting (set firmware-provision-on-authorization disable) and change the setting of firmware-provision-latest to once.
Previous
Next