Help
FortiManager
FortiManager supports network operations use cases for centralized management, best practices compliance, and workflow automation to provide better protection against breaches.
lingky88
Staff
Staff

Created on ‎01-08-2023 10:52 PM Edited on ‎02-26-2025 03:09 AM By Moderator

Article Id 242340

Technical Tip: How to enable backend-shell access in FortiManager/FortiAnalyzer

Description

This article describes how to enable backend-shell access in FortiManager/FortiAnalyzer.

Sometimes, it is necessary to log in to the FortiManager/FortiAnalyzer backend shell to execute some commands, for example, executing curl to check the reachability status of the backend servers. 

From v7.6.0, v7.4.4, and v7.2.6 onwards, the shell access has been removed: Special Notices.
Scope FortiManager/FortiAnalyzer.
Solution
  1. By default, the FortiManager/FortiAnalyzer does not grant shell access and the following message will be shown:

 

FMG01 # execute shell
Shell disabled.

 

  1. Check the system admin settings on FortiManager/FortiAnalyzer:

 

get system admin setting

shell-access : disable

 

  1. The shell-access needs to be enabled via the following CLI commands on FortiManager/FortiAnalyzer:

 

config system admin setting

(setting) set shell-access enable
Enter new password:
Confirm new password:

(setting)# end

 

  1. Perform the following to verify if the command has been implemented successfully:

 

get system admin setting

shell-access : enable
shell-password : *

 

  1. Access the backend-shell again:

execute shell
Enter password:
bash$

9734
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.