Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Upgrade Guide

    Home FortiAnalyzer 7.6.0 Upgrade Guide
    7.6.0
    7.6.1
    7.6.0
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.15
    6.4.14
    6.4.13
    6.4.12
    6.4.11
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.2.13
    6.2.12
    6.2.11
    6.2.10
    6.2.9
    6.2.8
    6.2.7
    6.2.6
    6.2.5
    6.2.3
    6.2.2
    6.2.1
    6.2.0
    6.0.12
    6.0.11
    6.0.10
    6.0.9
    6.0.8
    6.0.7
    6.0.6
    6.0.5
    6.0.4
    6.0.3
    6.0.2
    6.0.1
    6.0.0
    5.6.11
    5.6.10
    5.6.9
    5.6.8
    5.6.7
    5.6.6
    5.6.5
    5.6.4
    5.6.3
    5.6.2
    5.6.1
    5.6.0
    5.4.7
    5.4.6
    5.4.5
    5.4.4
    5.4.3
    5.4.2
    5.4.1
    5.4.0
    5.2.10
    5.2.9
    5.2.7
    5.2.6
    5.2.5
    5.2.4
    5.2.3
    5.2.2
    5.0.13
    5.0.12
    5.0.11

    Firmware Upgrade Paths

    Firmware Upgrade Paths

    The following table identifies the supported FortiAnalyzer upgrade paths and whether the upgrade requires a rebuild of the log database. If you need information about upgrading to a specific version, see the corresponding FortiAnalyzer Upgrade Guide.

    As a best practice, it typically is recommended to upgrade to the latest patch version before upgrading to the next major version. For recommended upgrade paths from a specific version and model, see the Upgrade Path Tool Table on the Fortinet Document Library.

    Before upgrading your device, see details in the applicable FortiAnalyzer Release Notes.

    Initial Version

    Upgrade to

    Log Database Rebuild

    7.4.3 or later

    Latest 7.4 version, then to 7.6.0

    No; however, migration is required when upgrading to 7.6.0. See Migrating the log database.

    7.4.0 to 7.4.2

    7.4.3, then to latest 7.4 version, and then to 7.6.0

    Caution

    Log insertion might be interrupted if FortiAnalyzer is upgraded directly from version 7.4.0/7.4.1 to 7.6.0.

    See the FortiAnalyzer Release Notes for more information.

    No; however, migration is required when upgrading to 7.6.0. See Migrating the log database.

    7.2.0 or later

    7.4.3, then to latest 7.4 version

    No

    7.0.0 or later

    Latest 7.2 version

    No

    6.4.0 or later

    Latest 7.0 version

    No

    6.2.0 or later

    Latest 6.4 version

    Yes if upgrading from a previous maintenance release

    FortiGate units with logdisk buffer log data while FortiAnalyzer units are rebooting. In most cases, the buffer is enough to cover the time needed for FortiAnalyzer to reboot. However, Fortinet still recommends configuring multiple log destinations to ensure no logs are lost.

    Migrating the log database

    Beginning in 7.6.0, FortiAnalyzer stores logs in a ClickHouse SQL database rather than a Postgres SQL database. If upgrading from an earlier version, the log database will automatically begin migration after upgrading to FortiAnalyzer 7.6.0 or later. During the migration process, all historical logs will insert from the Postgres database to the ClickHouse database.

    After the upgrade, the progress of the migration can be viewed from the GUI banner or from the CLI using the following command:

    diagnose sql status migrate-db

    FortiView, Log View, Fabric View, Incident & Events, and Reports are available during the migration, but the data will not be accurate. These features can be used with accurate data after the migration is complete.

    Fortinet Security Fabric

    If you are upgrading the firmware for a FortiAnalyzer unit that is part of a FortiOS Security Fabric, be aware of how the FortiOS Security Fabric upgrade affects the FortiAnalyzer upgrade. You must upgrade the products in the Security Fabric in a specific order. For example, you must upgrade FortiAnalyzer to 7.2.0 or later before you upgrade FortiOS to 7.2.0 or later.

    Previous
    Next

    Firmware Upgrade Paths

    Firmware Upgrade Paths

    The following table identifies the supported FortiAnalyzer upgrade paths and whether the upgrade requires a rebuild of the log database. If you need information about upgrading to a specific version, see the corresponding FortiAnalyzer Upgrade Guide.

    As a best practice, it typically is recommended to upgrade to the latest patch version before upgrading to the next major version. For recommended upgrade paths from a specific version and model, see the Upgrade Path Tool Table on the Fortinet Document Library.

    Before upgrading your device, see details in the applicable FortiAnalyzer Release Notes.

    Initial Version

    Upgrade to

    Log Database Rebuild

    7.4.3 or later

    Latest 7.4 version, then to 7.6.0

    No; however, migration is required when upgrading to 7.6.0. See Migrating the log database.

    7.4.0 to 7.4.2

    7.4.3, then to latest 7.4 version, and then to 7.6.0

    Caution

    Log insertion might be interrupted if FortiAnalyzer is upgraded directly from version 7.4.0/7.4.1 to 7.6.0.

    See the FortiAnalyzer Release Notes for more information.

    No; however, migration is required when upgrading to 7.6.0. See Migrating the log database.

    7.2.0 or later

    7.4.3, then to latest 7.4 version

    No

    7.0.0 or later

    Latest 7.2 version

    No

    6.4.0 or later

    Latest 7.0 version

    No

    6.2.0 or later

    Latest 6.4 version

    Yes if upgrading from a previous maintenance release

    FortiGate units with logdisk buffer log data while FortiAnalyzer units are rebooting. In most cases, the buffer is enough to cover the time needed for FortiAnalyzer to reboot. However, Fortinet still recommends configuring multiple log destinations to ensure no logs are lost.

    Migrating the log database

    Beginning in 7.6.0, FortiAnalyzer stores logs in a ClickHouse SQL database rather than a Postgres SQL database. If upgrading from an earlier version, the log database will automatically begin migration after upgrading to FortiAnalyzer 7.6.0 or later. During the migration process, all historical logs will insert from the Postgres database to the ClickHouse database.

    After the upgrade, the progress of the migration can be viewed from the GUI banner or from the CLI using the following command:

    diagnose sql status migrate-db

    FortiView, Log View, Fabric View, Incident & Events, and Reports are available during the migration, but the data will not be accurate. These features can be used with accurate data after the migration is complete.

    Fortinet Security Fabric

    If you are upgrading the firmware for a FortiAnalyzer unit that is part of a FortiOS Security Fabric, be aware of how the FortiOS Security Fabric upgrade affects the FortiAnalyzer upgrade. You must upgrade the products in the Security Fabric in a specific order. For example, you must upgrade FortiAnalyzer to 7.2.0 or later before you upgrade FortiOS to 7.2.0 or later.

    Previous
    Next