Staff

Technical Tip: Removing admin credentials from FortiGate and FortiManager

Forum|Forum|3 months ago
February 17, 2026
0 replies
243 views

Description

This article describes the process of removing admin credentials from FortiGate and FortiManager after the FortiGate is added to FortiManager. The admin credentials may be removed on both FortiGate and FortiManager to avoid cluttering the logs with authentication failures.

Scope

FortiGate, FortiManager.

Solution

To remove admin credentials from FortiGate and FortiManager, follow these steps:

Go to FortiGate -> System -> Admin -> Administrators and remove the admin credentials.
Go to FortiManager -> Device Manager -> Device -> FortiGate and remove the admin credentials.
Run the following:

get system central-management

diagnose dvm device list | grep fmg

The up or authorized state both indicate valid trust.

Note: Admin credentials are only required when FortiManager must authenticate to FortiGate in cases where the FortiGate does not yet trust the FortiManager serial number. Once the FortiGate has recorded and trusted the FortiManager’s serial number, no admin credentials are required for FortiGate and FortiManager communication.

Cases where credentials are required include:

FortiManager replacement (RMA).
FortiGate replacement (RMA).
Any scenario where the FortiGate and FortiManager trust (based on FortiManager serial number) is lost.

For more information, refer to the Managed device admin credentials.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded