| Solution |
Explanation of # and $ Prompts:
The # (Hash) Prompt:
- Indication: The # prompt indicates that the user is logged in with full administrative privileges (read-write access) to the FortiGate CLI.
- Context: This prompt appears when the user has logged in with an account that has super_admin privileges or an administrator profile with unrestricted access to all CLI commands and configuration settings.
- Capabilities:
- Execute all CLI commands, including configuration (config), diagnostic (diagnose), execution (execute), and informational (get) commands.
- Modify system settings, policies, and configurations.
- Perform administrative tasks such as rebooting, resetting, or upgrading the FortiGate unit.
Example Prompt:
Here, FortiWiFi-Home is the hostname of the FortiGate unit, and the # signifies full administrative access.
The $ (Dollar) Prompt:
- Indication: The $ prompt indicates that the user is logged in with limited or read-only privileges in the FortiGate CLI.
- Context: This prompt is displayed when the user has logged in with an account that has restricted permissions, typically associated with a custom administrator profile that limits access to specific commands or areas of the system (e.g., read-only or partial read-write access).
- Capabilities:
- Users can execute commands allowed by the administrator profile, such as get or show to view configurations, or specific diagnose commands, depending on the permissions granted.
- Configuration changes (config commands) or certain execute commands (e.g., reboot, factory reset) are restricted unless explicitly permitted in the admin profile.
- If a user attempts a command outside the permissions, the CLI will return an error, such as:
The above screenshot also shows the available top-level commands the current administrator can run. The current administrator can use '?' in the CLI to display the available top-level commands.
Here, FortiWiFi-Home is the hostname, and the $ indicates restricted access.
|
