| Description |
This article describes a method to modify the administrator account when the admin access is lost to the FortiGate. This method requires FortiGate Cloud access and the device must have a paid FortiGate Cloud subscription. |
| Scope | FortiGate. |
| Solution |
Note: The legacy method to reset password of the 'admin' account using the built-in 'maintainer' account to reset administrator password was removed in FortiOS v7.2.4 and later, see Technical Tip: Removal of maintainer account feature.
Requirements:
Select FortiGate Cloud -> Select the device -> Group Management -> Run script.
See FortiGate Cloud Administration Guide | Script for instructions on running CLI scripts.
To add a new administrator account, create and execute a new script using the following syntax:
config system admin
If the FortiGate is running a multi-VDOM configuration, use the following syntax instead:
config global
Alternatively, enabling the SSO FortiCloud administration access makes it possible to regain access to the FortiGate. Use the following syntax:
config system global set admin-forticloud-sso-login enable set admin-forticloud-sso-default-profile "super_admin" end
If the unit is not yet added to the FortiGate Cloud, but there is physical access to the unit, it is possible to add it with the FortiCloud key: FortiGate Cloud Administration Guide | Deployment |
