Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • CLI Reference

    7.2.10
    7.6.0
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.16
    7.0.15
    7.0.14
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.15
    6.4.14
    6.4.13
    6.4.12
    6.4.11
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.2.16
    6.2.15
    6.2.14
    6.2.13
    6.2.12
    6.2.11
    6.2.10
    6.2.9
    6.2.8
    6.2.7
    6.2.6
    6.2.5
    6.2.4
    6.2.3
    6.2.2
    6.2.1
    6.0.0
    5.6.0
    5.4.0
    5.2.0
    5.0.0

    config system federated-upgrade

    config system federated-upgrade

    Coordinate federated upgrades within the Security Fabric.

    config system federated-upgrade
    Description: Coordinate federated upgrades within the Security Fabric.
    set failure-device {string}
    set failure-reason [none|internal|...]
    set ha-reboot-controller {string}
    set next-path-index {integer}
    config node-list
        Description: Nodes which will be included in the upgrade.
        edit <serial>
            set coordinating-fortigate {string}
            set device-type [fortigate|fortiswitch|...]
            set maximum-minutes {integer}
            set setup-time {user}
            set time {user}
            set timing [immediate|scheduled]
            set upgrade-path {user}
        next
    end
    set source [user|auto-firmware-upgrade]
    set status [disabled|initialized|...]
    set upgrade-id {integer}
end

    config system federated-upgrade

    Parameter

    Description

    Type

    Size

    Default

    failure-device

    Serial number of the node to include.

    string

    Maximum length: 79

    failure-reason

    Reason for upgrade failure.

    option

    -

    none

    Option

    Description

    none

    No failure.

    internal

    An internal error occurred.

    timeout

    The upgrade timed out.

    device-type-unsupported

    The device type was not supported by the FortiGate.

    download-failed

    The image could not be downloaded.

    device-missing

    The device was disconnected from the FortiGate.

    version-unavailable

    An image matching the device and version could not be found.

    staging-failed

    The image could not be pushed to the device.

    reboot-failed

    The device could not be rebooted.

    device-not-reconnected

    The device did not reconnect after rebooting.

    node-not-ready

    A device in the Security Fabric tree was not ready.

    no-final-confirmation

    The coordinating FortiGate did not confirm the upgrade.

    no-confirmation-query

    A downstream FortiGate did not initiate final confirmation.

    config-error-log-nonempty

    Configuration errors encountered during the upgrade.

    node-failed

    A device in the Security Fabric tree failed.

    ha-reboot-controller

    Serial number of the FortiGate unit that will control the reboot process for the federated upgrade of the HA cluster.

    string

    Maximum length: 79

    next-path-index

    The index of the next image to upgrade to.

    integer

    Minimum value: 0 Maximum value: 10

    0

    source

    Source that set up the federated upgrade config.

    option

    -

    user

    Option

    Description

    user

    Upgrade configured based on user input.

    auto-firmware-upgrade

    Upgrade configured by the FortiGuard auto-firmware-upgrade feature.

    status

    Current status of the upgrade.

    option

    -

    disabled

    Option

    Description

    disabled

    No federated upgrade has been configured.

    initialized

    The upgrade has been configured.

    downloading

    The image is downloading in preparation for the upgrade.

    device-disconnected

    The image downloads are complete, but one or more devices have disconnected.

    ready

    The image download finished and the upgrade is pending.

    coordinating

    The upgrade is coordinating with other running upgrades.

    staging

    The upgrade is confirmed and images are being staged.

    final-check

    The upgrade is ready and final checks are in progress.

    upgrade-devices

    The upgrade is ready and devices are being rebooted.

    cancelled

    The upgrade was cancelled due to the tree not being ready.

    confirmed

    The upgrade was confirmed and reboots are running.

    done

    The upgrade completed successfully.

    failed

    The upgrade failed due to a local issue.

    upgrade-id

    Unique identifier for this upgrade.

    integer

    Minimum value: 0 Maximum value: 4294967295

    0

    config node-list

    Parameter

    Description

    Type

    Size

    Default

    coordinating-fortigate

    Serial number of the FortiGate unit that controls this device.

    string

    Maximum length: 79

    device-type

    Fortinet device type.

    option

    -

    fortigate

    Option

    Description

    fortigate

    This device is a FortiGate.

    fortiswitch

    This device is a FortiSwitch.

    fortiap

    This device is a FortiAP.

    fortiextender

    This device is a FortiExtender.

    maximum-minutes

    Maximum number of minutes to allow for immediate upgrade preparation.

    integer

    Minimum value: 5 Maximum value: 10080

    15

    serial

    Serial number of the node to include.

    string

    Maximum length: 79

    setup-time

    Upgrade preparation start time in UTC (hh:mm yyyy/mm/dd UTC).

    user

    Not Specified

    time

    Scheduled upgrade execution time in UTC (hh:mm yyyy/mm/dd UTC).

    user

    Not Specified

    timing

    Run immediately or at a scheduled time.

    option

    -

    immediate

    Option

    Description

    immediate

    Begin the upgrade immediately.

    scheduled

    Begin the upgrade at a configured time.

    upgrade-path

    Fortinet OS image versions to upgrade through in major-minor-patch format, such as 7-0-4.

    user

    Not Specified

    Previous
    Next

    config system federated-upgrade

    config system federated-upgrade

    Coordinate federated upgrades within the Security Fabric.

    config system federated-upgrade
    Description: Coordinate federated upgrades within the Security Fabric.
    set failure-device {string}
    set failure-reason [none|internal|...]
    set ha-reboot-controller {string}
    set next-path-index {integer}
    config node-list
        Description: Nodes which will be included in the upgrade.
        edit <serial>
            set coordinating-fortigate {string}
            set device-type [fortigate|fortiswitch|...]
            set maximum-minutes {integer}
            set setup-time {user}
            set time {user}
            set timing [immediate|scheduled]
            set upgrade-path {user}
        next
    end
    set source [user|auto-firmware-upgrade]
    set status [disabled|initialized|...]
    set upgrade-id {integer}
end

    config system federated-upgrade

    Parameter

    Description

    Type

    Size

    Default

    failure-device

    Serial number of the node to include.

    string

    Maximum length: 79

    failure-reason

    Reason for upgrade failure.

    option

    -

    none

    Option

    Description

    none

    No failure.

    internal

    An internal error occurred.

    timeout

    The upgrade timed out.

    device-type-unsupported

    The device type was not supported by the FortiGate.

    download-failed

    The image could not be downloaded.

    device-missing

    The device was disconnected from the FortiGate.

    version-unavailable

    An image matching the device and version could not be found.

    staging-failed

    The image could not be pushed to the device.

    reboot-failed

    The device could not be rebooted.

    device-not-reconnected

    The device did not reconnect after rebooting.

    node-not-ready

    A device in the Security Fabric tree was not ready.

    no-final-confirmation

    The coordinating FortiGate did not confirm the upgrade.

    no-confirmation-query

    A downstream FortiGate did not initiate final confirmation.

    config-error-log-nonempty

    Configuration errors encountered during the upgrade.

    node-failed

    A device in the Security Fabric tree failed.

    ha-reboot-controller

    Serial number of the FortiGate unit that will control the reboot process for the federated upgrade of the HA cluster.

    string

    Maximum length: 79

    next-path-index

    The index of the next image to upgrade to.

    integer

    Minimum value: 0 Maximum value: 10

    0

    source

    Source that set up the federated upgrade config.

    option

    -

    user

    Option

    Description

    user

    Upgrade configured based on user input.

    auto-firmware-upgrade

    Upgrade configured by the FortiGuard auto-firmware-upgrade feature.

    status

    Current status of the upgrade.

    option

    -

    disabled

    Option

    Description

    disabled

    No federated upgrade has been configured.

    initialized

    The upgrade has been configured.

    downloading

    The image is downloading in preparation for the upgrade.

    device-disconnected

    The image downloads are complete, but one or more devices have disconnected.

    ready

    The image download finished and the upgrade is pending.

    coordinating

    The upgrade is coordinating with other running upgrades.

    staging

    The upgrade is confirmed and images are being staged.

    final-check

    The upgrade is ready and final checks are in progress.

    upgrade-devices

    The upgrade is ready and devices are being rebooted.

    cancelled

    The upgrade was cancelled due to the tree not being ready.

    confirmed

    The upgrade was confirmed and reboots are running.

    done

    The upgrade completed successfully.

    failed

    The upgrade failed due to a local issue.

    upgrade-id

    Unique identifier for this upgrade.

    integer

    Minimum value: 0 Maximum value: 4294967295

    0

    config node-list

    Parameter

    Description

    Type

    Size

    Default

    coordinating-fortigate

    Serial number of the FortiGate unit that controls this device.

    string

    Maximum length: 79

    device-type

    Fortinet device type.

    option

    -

    fortigate

    Option

    Description

    fortigate

    This device is a FortiGate.

    fortiswitch

    This device is a FortiSwitch.

    fortiap

    This device is a FortiAP.

    fortiextender

    This device is a FortiExtender.

    maximum-minutes

    Maximum number of minutes to allow for immediate upgrade preparation.

    integer

    Minimum value: 5 Maximum value: 10080

    15

    serial

    Serial number of the node to include.

    string

    Maximum length: 79

    setup-time

    Upgrade preparation start time in UTC (hh:mm yyyy/mm/dd UTC).

    user

    Not Specified

    time

    Scheduled upgrade execution time in UTC (hh:mm yyyy/mm/dd UTC).

    user

    Not Specified

    timing

    Run immediately or at a scheduled time.

    option

    -

    immediate

    Option

    Description

    immediate

    Begin the upgrade immediately.

    scheduled

    Begin the upgrade at a configured time.

    upgrade-path

    Fortinet OS image versions to upgrade through in major-minor-patch format, such as 7-0-4.

    user

    Not Specified

    Previous
    Next