This article describes the necessary procedures to recover device access with a backup made with a prof_admin account, restored to the device that lost the super_admin account.

FortiGate v.6.0 and above.

Note:

This article is not relevant for FortiGate hosted in Azure. 

For restoring a super_admin account on Azure FortiGate, see this article: Technical Tip: Guide to Resetting Azure FortiGate-VM Password via Azure Cloud Shell and GUI.

Select the top-right user icon and navigate to Configuration -> Backup to take a backup of the current configuration.

As the backup is taken from the 'prof_admin' user, all 'super_admin' administrators and account profiles will be removed. 

Open the configuration file in a text editor and search for the 'config system admin' section:

Below this line, paste the following configuration:

edit "admin"

set accprofile "super_admin"

set vdom "root"

next

The final file should look like this:

Save the configuration file.

Factory reset the device with the following CLI command:

exec factoryreset2

In this case, factoryreset2 is used to keep the interface and routing configurations.

When using this procedure in a FortiGate running as a virtual machine, it is necessary to also add 'keepvmlicense', as shown in the article Technical Tip: Factory Reset Options in FortiGate-KVM.

After the factory reset, the device will reboot. It will be possible to access it using the default admin credentials: the username is 'admin' and the password is blank. FortiGate virtual machines hosted on public cloud platforms typically have a different default, for example, on AWS, the default Login credentials are 'admin' with password 'instance-id'.

Restore the configuration backup modified in the earlier step.

Related articles: 

Technical Tip: Removal of maintainer account feature

Technical Tip: Recover access to FortiGate via FortiGate Cloud