Description
This article describes how to factory reset the FortiGate to erase the current configuration using the external reset button on low-end FortiGate models.
Scope
FortiGate/FortiWifi/-DSL: 80F, 81F, 70F, 71F, 60E/61E, 60F/61F, 40F, 80E, 60C, 100F/101F, 90G and other models intended for small businesses.
Solution
Note:
To Factory format a FortiGate unit without losing management access or changing its FortiOS version, follow the steps in Technical Tip: How to reset a FortiGate with the default factory settings/without losing management ...
diagnose hardware test button
The output will show if it is used as a Reset Button or as an NMI Button. It is possible to press 'N' to stop the test.
Note:
If the 'STATUS/STA' LED does not blink after waiting a while, this indicates that the device cannot boot up, and there may be boot image corruption. Access the device using a serial connection with the console cable to verify this. Refer to this document for more information: Technical Tip: How to connect to the FortiGate and FortiAP console port
FortiGate:
System is resetting to factory default...
The system is going down NOW !!
The process as described above is valid until v7.4.0, starting with v7.4.1+ there is a change in the Status LED function.
For v7.4.1 and above follow the steps below:
The FortiGate logs as below when the reset button is pressed:
date="2024-08-24" time="16:08:15" id=7135583482205437973 bid=5898939 dvid=1155 itime=1661382495 euid=3 epid=3 dsteuid=3 dstepid=3 logver=702010000 logid="0100032252" type="event" subtype="system" level="critical" action="factory-reset" msg="User reset to the factory settings from forticron" logdesc="Factory settings reset" ui="forticron" eventtime=1661382495134259444 tz="-0700" devid="FGT61Exxxxxxxxxx" vd="root" devname="FGT61Exxxxxxxxxx" devgrps="{NULL}"
date="2024-08-24" time="16:08:22" id=7135583516565176327 bid=5898939 dvid=1155 itime=1661382503 euid=3 epid=3 dsteuid=3 dstepid=3 logver=702010000 logid="0100032138" type="event" subtype="system" level="critical" action="reboot" msg="User rebooted the device from forticron. The reason is 'factory reset'" logdesc="Device rebooted" ui="forticron" eventtime=1661382502832782205 tz="-0700" devid="FGT61Exxxxxxxxxx" vd="root" devname="FGT61Exxxxxxxxxx" devgrps="{NULL}"
How to disable the hardware reset button:
config system global
(global) # show full | grep "reset"
set admin-reset-button enable <----- This would disable the reset button.
set check-reset-range disable
set reset-sessionless-tcp disable
This is not a recommended setting, as sometimes FortiGate enters a boot loop, and the RESET button helps to factory reset the settings.
How to reset the system configuration when the hardware reset button is disabled or the device model has no external reset button:
Connect with a console cable, and reboot the device. During the bootup process, when 'Press any key to display configuration menu...' appears, press any key to enter the bootup menu.
From the menu display, press I to enter 'System configuration and information':
On the next menu press E to reset the system configuration:
After this step, FortiGate will ask to confirm the choice. Press Y to proceed:
This will clear only the system configuration of BIOS as displayed above. To exit and reboot the device, quit the menu with Q multiple times, and the device will reboot with a clear configuration.
There is an observation on a rare scenario where when the Boot interrupt sequence process did not show up (for example any option for flash format/TFTP) the last option would be to press the reset button on the back of the FortiGate and get the FortiGate back to factory default and on this case the FortiGate can be logged in using default account but make sure a good known config file is already available to restore after accessing the FortiGate.
This option is to be considered only when the admin password is lost or not working. After this, try to perform an upgrade to the latest version and observe the behavior. If the same issue is observed, consider performing Hardware tests (HQIP).
No Boot interrupt sequence seen after factory format or reboot FortiGate:
After a factory reset, the default credentials would be :
FortiGate will ask to create a new password after entering the username admin with no password upon first-time login.
Related article:
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.