Help
FortiManager
FortiManager supports network operations use cases for centralized management, best practices compliance, and workflow automation to provide better protection against breaches.
Nur
Staff
Staff

Created on ‎01-26-2022 05:15 AM Edited on ‎11-27-2025 07:58 AM By Community Manager

Article Id 203717

Admin Privileges unable make change in FortiManager

Description

This article describes a scenario where changes cannot be made upon creating a new (read-write) profile for an admin. 

This issue occurs when enabling the ADOMs.

 

For example:

 

  1. It is not possible to lock the ADOM, to install a policy, or to write data.
  2. The Lock button does not appear or became grey.
  3. The admin profile appears as it does for read-only access even with read-write access.
Scope FortiManager.
Solution
  1. In the GUI, go to System Settings -> Admin -> Profile -> Create New -> Set the mode to Read-Write -> OK.

 

Nur_0-1643188426042.png

 

  1. In the GUI, go to System Settings -> Admin -> Administrators -> Create New -> admin Profile (choose the one recently created) -> OK.

 

Nur_1-1643188574005.png

 

  1. Log in with the admin profile: no button lock will appear.

 

Nur_2-1643189239907.png

 

To fix the issue when the profile has been created, use the following CLI configuration:

 

# config system admin profile
    edit "testing"  <----- The profile created.
        set adom-lock read-write  <----- Check the rules. Change from read to read-write as appropriate.

end

 

Related document:

Locking an ADOM - FortiManager administration guide
1595
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.