Skip to main content
ictdude
ictdude
New Member
May 4, 2016
Solved

Lost admin user need reset on a FGVM64-5.04-FW-build1011-151221 (fortigate virtual app)

  • May 4, 2016
  • 1 reply
  • 8814 views

Dear all,

 

We cant access the Fortigat. We need to reset the admin account.

 

(fortigate virtual appliance)  FGVM64-5.04-FW-build1011-151221

 

Its a virtual appliance running on Vmware. We are able to enter the config files.

So we can edit the files if needed.

 

Or how to enable the fortigate maintainer ? Its disabled.

We need to reset this by editing the config files directly. Thats the only

access we have,   We mounted the system with a linux boot cd. So thats how we can enter the system.

 

Help needed urgent !!!! 

    Best answer by ede_pfau

    hi,

     

    as Dave Hall has already posted, put a new password in cleartext into the config file. The entry will be converted to the encrypted form ("ENC b0980a8fddsjkfdlj...") by FortiOS at the next reboot.

     

    IF you can, boot up the FGT, 'restore' the config, and after the reboot you can use the new password.

    IF you can't restore (because of lack of admin rights...) then you can put the config onto a USB stick, set the auto-config option (cf. CLI Reference), and reboot.

     

    So you see, physical access control is key to a secure firewall!

    1 reply

    Dave_Hall
    Dave_Hall
    New Member
    May 4, 2016

    If you have access to an unencrypted  config file, just look for the config system admin section, then edit the password in the "admin" section.  eg.

     

    config system admin edit "admin" set password <enter new password> next end

    ictdude
    ictdudeAuthor
    New Member
    May 4, 2016

    Dave Hall wrote:

    If you have access to an unencrypted  config file, just look for the config system admin section, then edit the password in the "admin" section.  eg.

     

    config system admin edit "admin" set password <enter new password> next end

    The config file looks likt this:

     

    set password ENC AK1wTiFOMv7*******

    Looks like a special password ..  ENC AK1

    Experience with this ? Will that work ? Will try and let you know.

     

    Option 2 how to enable the maintainer account ?

     

    Also i have 2 config files ?

    cfg0000000001 and cfg0000000002  what file is the "master"

    1 or 2 ?

     

     

     

     

    ede_pfau
    SuperUser
    ede_pfauAnswer
    SuperUser
    May 4, 2016

    hi,

     

    as Dave Hall has already posted, put a new password in cleartext into the config file. The entry will be converted to the encrypted form ("ENC b0980a8fddsjkfdlj...") by FortiOS at the next reboot.

     

    IF you can, boot up the FGT, 'restore' the config, and after the reboot you can use the new password.

    IF you can't restore (because of lack of admin rights...) then you can put the config onto a USB stick, set the auto-config option (cf. CLI Reference), and reboot.

     

    So you see, physical access control is key to a secure firewall!

    Terms & ConditionsAccessibility statement