When the Administrator user cannot be deleted via the GUI, the following error appears:

Error: "Failed to Delete undefined"

Solution:

Verify the Administrator User information using the following commands in the FortiNAC CLI:

execute enter-shell
$ DumpUserRecords -userID Adminuser3
UserRecord:
Landscape = 52241850492 00:0C:29:DB:60:7C
ID = 15
Role = NAC-Default
Type = Administrative
Admin Profile DBID = 1
Directory Policy = null
DN = Adminuser3
Position =
Email Address =
First Name =
Last Name = Delete
User ID = Adminuser3
notes =
Creation Time = Wed Oct 16 15:13:21 CEST 2024
Expiration Date = Never
Inactivity Days = Not Configured
Inactivity Date = Not Configured
Last Login Date = Never
Status = Disconnected
Security Access Value = null
locale = en_US
Address =
City =
State =
Zip =
Country = US
Organization = null
Organizational Unit = null
Phone =
Mobile Number =
Mobile Provider =
Propagate Hosts = true
Is API Admin = false
API Access Token = null
Trusted Hosts = []
Extra Info =
Attribute: LicenseAgreement = false
Attribute: AuthenticateType = CM

Delete the Administrator User using the following commands in the FortiNAC CLI:

$ DumpUserRecords -userID Adminuser3 -delete
UserRecord:
Landscape = 52241850492 00:0C:29:DB:60:7C
ID = 15
Role = NAC-Default
Type = Administrative
Admin Profile DBID = 1
Directory Policy = null
DN = Adminuser3
Position =
Email Address =
First Name =
Last Name = Delete
User ID = Adminuser3
notes =
Creation Time = Wed Oct 16 15:13:21 CEST 2024
Expiration Date = Never
Inactivity Days = Not Configured
Inactivity Date = Not Configured
Last Login Date = Never
Status = Disconnected
Security Access Value = null
locale = en_US
Address =
City =
State =
Zip =
Country = US
Organization = null
Organizational Unit = null
Phone =
Mobile Number =
Mobile Provider =
Propagate Hosts = true
Is API Admin = false
API Access Token = null
Trusted Hosts = []
Extra Info =
Attribute: LicenseAgreement = false
Attribute: AuthenticateType = CM

Deleting 1 com.bsc.api.dynamic.UserRecord

On FortiNAC Legacy, log in to the CLI via the ROOT.
Verify the Administrator User information using the following commands:

> DumpUserRecords -userID Adminuser3
UserRecord:
Landscape = 345050822798 00:50:56:A1:B8:8E
ID = 90
Role = NAC-Default
Type = Administrative
Admin Profile DBID = 2
Directory Policy = null
DN = Adminuser3
Position =
Email Address =
First Name =
Last Name = delete
User ID = Adminuser3
notes =
Creation Time = Wed Oct 16 15:42:15 CEST 2024
Expiration Date = Never
Inactivity Days = 3 Days
Inactivity Date = Sat Oct 19 15:42:15 CEST 2024
Last Login Date = Never
Status = Disconnected
Security Access Value = null
locale = en_US
Address =
City =
State =
Zip =
Country = US
Organization = null
Organizational Unit = null
Phone =
Mobile Number =
Mobile Provider =
Propagate Hosts = true
Is API Admin = false
API Access Token = null
Trusted Hosts = []
Extra Info =
Attribute: LicenseAgreement = false
Attribute: AuthenticateType = CM
Attribute: UserExpirationDeleteRegHosts = true

Delete the Administrator User using the following commands in the FortiNAC CLI:

> DumpUserRecords -userID Adminuser3 -delete
UserRecord:
Landscape = 345050822798 00:50:56:A1:B8:8E
ID = 90
Role = NAC-Default
Type = Administrative
Admin Profile DBID = 2
Directory Policy = null
DN = Adminuser3
Position =
Email Address =
First Name =
Last Name = delete
User ID = Adminuser3
notes =
Creation Time = Wed Oct 16 15:42:15 CEST 2024
Expiration Date = Never
Inactivity Days = 3 Days
Inactivity Date = Sat Oct 19 15:42:15 CEST 2024
Last Login Date = Never
Status = Disconnected
Security Access Value = null
locale = en_US
Address =
City =
State =
Zip =
Country = US
Organization = null
Organizational Unit = null
Phone =
Mobile Number =
Mobile Provider =
Propagate Hosts = true
Is API Admin = false
API Access Token = null
Trusted Hosts = []
Extra Info =
Attribute: LicenseAgreement = false
Attribute: AuthenticateType = CM
Attribute: UserExpirationDeleteRegHosts = true

Deleting 1 com.bsc.api.dynamic.UserRecord