Skip to main content
Nur
Staff
Nur
Staff
January 26, 2022

Admin Privileges unable make change in FortiManager

  • January 26, 2022
  • 0 replies
  • 1721 views
Description

This article describes a scenario where changes cannot be made upon creating a new (read-write) profile for an admin. 

This issue occurs when enabling the ADOMs.

 

For example:

 

  1. It is not possible to lock the ADOM, to install a policy, or to write data.
  2. The Lock button does not appear or became grey.
  3. The admin profile appears as it does for read-only access even with read-write access.
Scope FortiManager.
Solution
  1. In the GUI, go to System Settings -> Admin -> Profile -> Create New -> Set the mode to Read-Write -> OK.

 

Nur_0-1643188426042.png

 

  1. In the GUI, go to System Settings -> Admin -> Administrators -> Create New -> admin Profile (choose the one recently created) -> OK.

 

Nur_1-1643188574005.png

 

  1. Log in with the admin profile: no button lock will appear.

 

Nur_2-1643189239907.png

 

To fix the issue when the profile has been created, use the following CLI configuration:

 

# config system admin profile
    edit "testing"  <----- The profile created.
        set adom-lock read-write  <----- Check the rules. Change from read to read-write as appropriate.

end

 

Related document:

Locking an ADOM - FortiManager administration guide
    Terms & ConditionsAccessibility statement