Technical Tip: Delete default 'admin' user account in FortiWeb
| Description | This article discusses about situation when it is wanted to delete the 'admin' user account in FortiWeb and alternative ways to protect using this account. |
| Scope | FortiWeb. |
| Solution | In some cases, it is wanted to delete the default 'admin' user in FortiWeb; however 'admin' user cannot be deleted or change its administration profile (prof_admin).
This is because the 'admin' user has special rights, like restoring passwords of other administrators; no other account can be considered a complete replacement.
To try to avoid using this administrator account, modifications can be made in the 'admin' configuration using a different FortiWeb administrator user with Access Profile 'prof_admin':
In IPv4 Trusted Hosts, configure an IP address that cannot connect to FortiWeb; for example, 1.2.3.4/32. To finish, select OK.
Configure a password in New Password and Confirm Password with a high degree of complexity (at least 12 characters, including upper and lower case letters, digits, and special characters; something like shown in the example). To finish, select OK.
Disable admin user (starting with version 8.0.3): From FortiWeb version 8.0.3, the ability to disable the built-in admin account is introduced. To disable the admin user, follow the instructions explained in this document:
|
