Staff

Troubleshooting Tip: Unable to delete empty ADOM due to error 'Unable to delete because ADOM is in global assignment list or is referenced by a defined admin account'

Forum|Forum|4 months ago
January 30, 2026
0 replies
94 views

Description

This article describes how to delete an empty ADOM with the error 'Unable to delete because ADOM is in global assignment list or is referenced by a defined admin account'.

Scope

FortiManager, FortiAnalyzer.

Solution

To delete an ADOM, it must not contain any devices.
However, when trying to delete the empty ADOM, FortiManager prompts the following error regarding the global assignment list or defined admin account:

ADOM error.png

To check the defined admin account, use the following command. This command will show the list of admin user configurations that reference the ADOM 'PDI001':

show system admin user

...

edit "arif"

set password ENC PB2wfrc1lNlNuaYop4SJ0LsU/Cb7wsJ2xxZPXsDJxfHBbzOqy4FIOKYvhFFLA=

set adom-access specify

set adom "PDI001"

set policy-package "test1" "test2 "test3"

set policy-block "test_policy_block"

config meta-data

edit "Contact Email"

Remove the 'PDI001' ADOM from this user using the following command:

config system admin user

(user) edit arif

(arif) set adom-access all

(arif) end

The ADOM should be able to be deleted now.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded