Description | This article describes how to resolve most common scenarios faced when administrating the FortiGate, including some items such as what to do when an admin password is lost, and how to create alternative login options for emergencies. |
Scope | FortiGate. |
Solution |
The solution varies depending on the FortiOS version and the scenario.
Admin password is lost (no MFA enabled):
The admin password is lost (MFA enabled): Regardless of the FortiOS version running on a given FortiGate unit, MFA cannot be disabled using the password reset method, so the only remaining option is to hard reset the unit. The procedure is the same as mentioned on the previous item.
Additional info: when a hard reset is done, the unit will return to default settings: IP Address: 192.168.1.99 username: admin password: <no password, leave this field blank>
It is recommended to have a backup config file stored on the system to avoid having to start configuring the unit from scratch. Now, it will not be necessary to modify it to avoid losing administrator access again after restoring it. To modify the config file as needed, refer to the steps below:
When editing a username that has two-factor enabled, it will be necessary to remove the configuration associated to the login with it by using only a username and password combination:
Tips and general recommendations for administrator users:
At any time, refer to the System administrator best practices documentation to get more info about how to secure administrative access to FortiGate: Technical Tip: System administrator best practices
An alternative when there is no backup configuration file, and there is a paid subscription to the FortiGate with FortiGate Cloud:Technical Tip: Recover access to FortiGate via FortiCloud
This guide explains how to create a temporary 'super_admin' user to regain access to the FortiGate. If the FortiGate has not been added yet to the FortiGate cloud, it can be added using the FortiCloud Key: FortiCloud or FortiDeploy key |
Great article @jtatis !! Keep it up!!
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.