Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
ntaneja
Staff & Editor
Staff & Editor

Created on ‎06-29-2025 11:36 PM Edited on ‎07-23-2025 12:15 AM By Moderator

Article Id 398789

Troubleshooting Tip: Unable to view IPsec and Policy Options in Firewall with Read-Only credentials

Description This article describes the issue where it is not possible to view IPsec and policy options in the firewall with read-only credentials. 
Scope FortiGate.
Solution

To resolve this issue, go to System -> Admin Profiles -> Profile and add the following configuration options:

 

config system accprofile
    edit "read_only"
        set fwgrp read
        set vpngrp read
        set utmgrp read
        set wifi read
    next

end

 

From GUI:

 

read only.png

 

These options will allow the user to view IPsec and policy options in the firewall with read-only credentials.

 

Related article:

Technical Tip: Minimum permissions for FortiGate operations
230
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.