Hot!Fortimanager adom root upgrade from 5.6 to 6.0 fail

Author
uwe@klittich.eu
New Member
  • Total Posts : 2
  • Scores: 0
  • Reward points: 0
  • Joined: 2020/10/16 01:24:54
  • Status: offline
2020/10/16 01:32:45 (permalink)
0

Fortimanager adom root upgrade from 5.6 to 6.0 fail

Hello Forum,
I try to upgrade the Fortimanager adom root from 5.6 to 6.0 and i get this error...
Here the diagnose debug service cdb 255.
xxxxxx0001 # Request:
{ "client": "gui SysAllAdoms:3397", "id": 1, "method": "exec", "params": [{ "target start": 2, "url": "\/pm\/config\/adom\/root\/_upgrade"}], "session": 10205}
Chkperm Response:
{ "id": 1, "result": [{ "status": { "code": 0, "message": "OK"}, "url": "\/pm\/config\/adom\/root\/_upgrade"}], "session": 10205}
Response:
{ "id": 1, "result": [{ "data": { "task": 93246}, "status": { "code": 0, "message": "OK"}, "url": "\/pm\/config\/adom\/root\/_upgrade"}]}
copy vpn certificate ca.root_CA2(soid=1173) to dparent=1467,
copy user tacacs+.xxxxx01(soid=1174) to dparent=1467,
copy user tacacs+.xxxxx02(soid=1175) to dparent=1467,
copy user local.guest(soid=355) to dparent=1467,
copy user group.SSO_Guest_Users(soid=356) to dparent=1467,
copy user group.Guest-group(soid=357) to dparent=1467,
copy user group.tacacs_admin(soid=1176) to dparent=1467,
copy match.1(soid=1177) to dparent=1176,
--> commit copy match.1(soid=1177) to dparent=1176,  fail: err=-2,user group match is not a member. svrname:xxxxx01 members:xxxxx01 xxxxx02 name:xxxxx01 xxxxx02 member:xxxxx01 xxxxx02
======= Dump sentry and dentry======
       1177    --->   1177  
id:       1     --->   1
server-name:       xxxxx01     --->   xxxxx01
group-name:       FGTadmin     --->   FGTadmin
===================================
copy match.1(soid=1177) to dparent=1176, :fail.
copy user group.tacacs_admin(soid=1176) to dparent=1467, :fail.
 
derlfwmmpc0001 # diagnose debug disable
 
There are no devices in the root adom no other adoms configured.....
I have no idea to find the issue. Tactacs Servers configured for login. But the upgrade will be done with admin User
Someone an idea ? I´m lost in the moment. I check Fortimanager config in the cli but user group not found only admin group.
 
 
post edited by uwe@klittich.eu - 2020/10/16 02:55:23
#1
sw2090
Expert Member
  • Total Posts : 824
  • Scores: 60
  • Reward points: 0
  • Joined: 2017/06/14 01:27:25
  • Location: Regensburg
  • Status: offline
Re: Fortimanager adom root upgrade from 5.6 to 6.0 fail 2020/10/29 07:24:14 (permalink)
0
hm upgrading an adom here each time threw weird errors.
I suggest checking or even (if possible) delete that usergroupin your adom and then try again.
#2
Jump to:
© 2020 APG vNext Commercial Version 5.5