FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
dbabic
Staff
Staff
Description
This article explains how to restart a FortiGate to factory defaults.

This procedures clears all changes made to the FortiGate configuration and resets the system to its original configuration  with the default factory settings.

It does not change the firmware version or the antivirus or IPS  attack definitions.

There is also option to reset FortiGate to factory settings without losing management access.

Scope
Basic FortiGate Management.

Solution
A FortiGate Device can be reset to Factory defaults by using either the GUI or the CLI interface. This reset will remove all configuration. It will be out of the box condition. Direct access to FortiGate will be needed to access it.

GUI

Note: The reset to factory settings using the GUI is not available in v5.4.

1) Access the system using a web browser.

2) In the navigation tree, go to System -> Dashboard -> Status, and select the Revisions link for the System Information Widget.

3) Click on Restore Factory Default.

4) System will reboot and load basic configuration.


CLI

1) Open a SSH to the system and execute the following command:
#exec factoryreset
2) A warning will appear.
This operation will reset the system to factory default!
Do you want to continue? (y/n)
3) System will reboot and will load a basic configuration.

Factory reset without losing management access:

This option will reset device to factory setting except for VDOM, interface and static route settings. Means that after reset, FortiGate will not have any firewall policies, IPsec settings, … but it will be possible to access the FortiGate remotely on its IP address. This option is available only in CLI:

1)    Open a SSH to the system and execute the following command:
#execute factoryreset2

2)    Warning will appear:
FGT50E-3 # exec factoryreset2
This operation will reset the system to factory default except system.global.vdom-admin/system.global.long-vdom-name/VDOMs/system.interface/system.settings/router.static/router.static6!
Do you want to continue? (y/n)

After reboot, FortiGate will be in factory settings but with management access. All administrators will be removed and FortiGate can be accessed with default username.

 

Internal Notes


Contributors