A test admin account is created on the FortiGate, along with an admin profile configured with read and write access to network settings.

Admin profile configuration: 

config system accprofile
   edit "Test"
    set secfabgrp read-write
    set ftviewgrp read
    set authgrp read
    set netgrp read-write                 <----- Read and write access for network configuration.
    set loggrp read
    set fwgrp read
    set vpngrp read
    set wanoptgrp read
    set wifi read
   next
end

Test the admin profile assigned to the admin user. 

Admin configuration: 

config system admin
   edit "User1"
     set accprofile "Test"
     set vdom "root"
     set password ENC          PB2cZhgSZeAYAm7x8wHuQgth1rI1rYOvn8c2u7Kys7cS1MjqbiszmYBok3l25rWyQp6/GwzDxer6ll3kRXAjAOvY=
   next
end

The DNS database is already enabled under feature visibility. Go to System ->  Feature Visibility.  When User1 admin logs in on FortiGate, User1 admin is not able to see DNS and DNS server configuration.

 
To view and configure the 'DNS and DNS server' section on a FortiGate, the user admin needs to have system configuration access. Despite its location in the GUI's side menu, the DNS configuration falls under the system configuration category in FortiGate (config system dns and config system dns-server and config system dns-database).

Once the system configuration access is assigned to the admin user, it will be possible to view and configure DNS and the DNS server.

config system accprofile
   edit "test"
     set secfabgrp read-write
     set ftviewgrp read
     set authgrp read
    set sysgrp read-write        <------ System configuration access needs to be allowed.       
     set netgrp read-write
     set loggrp read
     set fwgrp read
     set vpngrp read
     set wanoptgrp read
     set wifi read
   next
end