Description | The article describes how to reset the admin password using the maintainer account in the secondary unit and synchronize the config to the primary without a network outage. |
Scope | FortiGate. |
Solution |
To reset the admin account password using the maintainer account, it is necessary to power cycle the secondary unit, then follow the steps as stated in the below document:
HA status will show 'out-of-sync' for a while as the output below, but it will be 'in-sync' after it successfully synchronizes the admin's password.
# get system ha status HA checksum will be mismatched on 'global' since the admin account belongs to the global configuration as output below, it will be matched after the admin's password successfully synchronize the admin's password.
# diagnose sys ha checksum cluster ================== FGXXXXXXXXX ================== is_manage_primary()=1, is_root_primary()=1 checksum ================== FGXXXXXXXXX ================== is_manage_primary()=0, is_root_primary()=0 checksum
Log description as shown in the screenshot below:
|
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.