FortiGate administrator account only gets read-only access if FortiGate is managed by FortiManager, there is no option for sign in 'Login Read-Write'.

Note:

This issue normally happens when FortiGate is managed by FortiManager and the post-banner message has been configured on the Firewall. For login banner configuration check this related document: How to configure login banner

Symptoms for this issue will be when the admin account attempts to log in to FortiGate and after successfully authenticated, post-login banner prompt however, the expected prompt pf 'Login Read-Write' is not displayed.

After agreeing on the post-login banner process to GUI, Admin users only obtain the read-only activity even profile assigned was administrator privilege  This issue is marked as resolved in the v7.0.14 release notes, referring to this document: Resolved issues

The workaround for this issue will be to disable the post-login banner from the command line below:

config system global

    set post-login-banner disable

end

Sign in again, the issue should be resolved