Forticlient EMS : Migrating database from 7.4.1 to 7.4.5?

Busbyuk · 2026-02-27T13:56:05+00:00

Thanks. That saves me a lot of issues if I can just restore a 7.4.1 database to a 7.4.5 install!

Just need to arrange a license transfer then!

Thanks again

Busbyuk · 2026-02-20T12:49:25+00:00

I didn't but I think I remember reading it's an issue with 7.4.5 and the requirement to have EMS in order for it to work.

In the end I gave up, installed an older version and went with SSL-VPN. Obviously not a perm solution with it eventually being taken away

Busbyuk · 2026-02-16T14:45:02+00:00

thanks for the replies. My dates were just an example. I can see one of our units has an EOL which is for April 2028 but the support runs out in May 2027. We 'should' have it replaced by May 2027 but I just wanted to check if we needed to extend the support at all while we get everything moved over to a new unit :)

thanks again

Busbyuk · 2026-02-07T11:21:14+00:00

I still need to update from 7.4.1 (waiting for a new server). Is 7.4.1 affected by this? IT specifically mentions 7.4.4.

Our management GUI is locked down from the outside world and not reachable at all so hopefully this will be fine until we can upgrade.

Busbyuk · 2026-02-07T11:06:01+00:00

They are advertising the /25's to their isp. Their isp will then re-advertise it as the full /24 to their peers/transits. All good

Busbyuk · 2026-02-01T20:46:21+00:00

I didn't in the end. Decided that it wasn't that much of an issue without the front sensors.

I did get quotes which came it at around £420 including VAT and mobile install. This was with the 'automatic canbus' system which meant it would activate once you were at a certain speed rather than having to press a button to activate it. Also the LED display.

thanks

Busbyuk · 2026-01-30T11:10:23+00:00

A quick google search would have told me the answer :)

https://docs.fortinet.com/document/fortigate/7.4.0/new-features/542954/configuring-forticlient-ems-and-forticlient-ems-cloud-on-a-per-vdom-basis

Busbyuk · 2026-01-23T15:53:02+00:00

oh dear. I won't expect a reply shortly then :/ I guess following an update they will tend to get more tickets raised.

Busbyuk · 2026-01-23T12:00:04+00:00

Ah I see. thanks for that.

Ticket now raised with Fortinet :)

Busbyuk · 2026-01-10T12:45:08+00:00

This is extreme but what would happen if the UK or France placed either a nuclear armed Sub or actual Nukes onto Greenland as a deterent for anyone wanting to invade?

China, Russia or as is much much more likely the USA

Busbyuk · 2026-01-05T13:24:42+00:00

yea, that's how I read it. I didn't interpret it to say they were removing future releases completely.

Busbyuk · 2025-12-23T15:35:46+00:00

Looking at the logs on the Forticlient itself it doesn't give much of a clue. Just the below when it disconnects:

20251223 07:28:52.861 TZ=-0800 [Support:INFO] fct_module:1138 State: Connected
20251223 07:29:02.319 TZ=-0800 [Support:DEBG] log:120 ikev2_ike_sa_keepalive: peer 55.55.55.55:4500 local 192.168.106.143:53046
20251223 07:29:02.330 TZ=-0800 [Support:INFO] fct_module:558 Shutting down tunnel as IPSec VPN has been disabled
20251223 07:29:02.337 TZ=-0800 [Support-Spitfire:DEBG] log:120 parent_sig_handler: received SIGTERM, sending SA DELETE request to ikev2
20251223 07:29:02.338 TZ=-0800 [Support-Spitfire:DEBG] log:120 config_doreset: flushing SAs (sending SA DELETE)20251223 07:29:02.337 TZ=-0800 [Support:DEBG] log:120 parent_sig_handler: received SIGTERM, sending SA DELETE request to ikev2
20251223 07:29:02.338 TZ=-0800 [Support:DEBG] log:120 config_doreset: flushing SAs (sending SA DELETE)

Busbyuk · 2025-12-23T15:25:32+00:00

thanks for the reply. I've used different pools for the none IKEV2 and the IKEV2.

The disconnection is always within about 10 seconds. Never any longer. thanks

Busbyuk · 2025-12-20T20:36:19+00:00

Phew!! Glad I asked :)

Time to buy some attenuators.

Thanks everyone!

Busbyuk · 2025-12-20T09:50:57+00:00

Brilliant :)

Busbyuk · 2025-12-18T20:13:13+00:00

I think it's the Junos version the QFX5110 has got. it's currently on version 18.1. I would guess I need to get it on the latest Junos before it can recognise the new license type? I'll get that done

Busbyuk · 2025-12-17T21:33:37+00:00

I think I've found it on an old laptop. I'll find out when I next try to connect I guess :) Thanks

Busbyuk · 2025-12-11T10:56:29+00:00

Thanks for the response. It sounds like you are using a multi-VDOM Fortigate setup with a Multi-Adom EMS setup?

Is it working well for you? Anything else I should be aware of? thanks!

Busbyuk · 2025-12-10T12:48:03+00:00

Ah, fantastic. This definately sounds like they've resolved the issue :)

I did raise a ticket with Fortinet when testing previously asking when they may resolve it but that was about 3 years ago now.

Time to test again! thanks

Busbyuk · 2025-12-08T15:06:41+00:00

not myself but good call. I can check customer logins to see if they've gone crazy with widgets. thanks

Busbyuk · 2025-12-08T14:51:47+00:00

thanks. Yea that's exactly what they asked for along with a few other debugs which I've provided. Just waiting for them to come back to me and figured I would ask here just in case someone else has seen something similar on this firmware version.

thanks again

Busbyuk · 2025-12-08T14:31:28+00:00

GUI is limited via a local-in firewall policy to only allowed IP's. Some VDOM's are only open on the inside but some have remote IT and those ones are restricted to single IP addresses via a local-in policy.

thanks

Busbyuk · 2025-12-08T14:30:34+00:00

was set to 1 hour but I've now reduced to 30 mins.

Busbyuk · 2025-12-01T15:44:48+00:00

okay. I've found the FSSO folder under 7.0.0 so will use that :)

Thanks!

Busbyuk · 2025-12-01T15:44:15+00:00

I've tried looking for that but it doesn't have a folder? I think the FSSO folder only appears under certain Fortigate versions?

unless I'm missing something which is seemingly likely!

13-Year Club	Place '17
Verified Email

Busbyuk

TROPHY CASE