Help
FortiSIEM
FortiSIEM provides Security Information and Event Management (SIEM) and User and Entity Behavior Analytics (UEBA)
koolishami
Staff
Staff

Created on ‎08-19-2024 01:59 AM

Article Id 334237

Troubleshooting Tip: Unlocking a User via CLI When GUI Unlock Fails

Description

This article describes step-by-step instructions on how to unlock a user using the Command Line Interface (CLI) when the unlock function in the Graphical User Interface (GUI) is not working.
Scope FortiSIEM v7.x+.
Solution

This issue occurs when a Full Admin attempts to unlock a user (due to account lockout) but is unable to do so from the GUI.

To resolve this issue, follow these steps:

  1. Identify the User: Run the following command to retrieve details about the users:

psql -U phoenix -d phoenixdb -c "select id, active, description, full_name, collector_id, unlock_option from ph_user;"

 

Identify the id of the user desired to be unlocked and check if the unlock_option column is blank or set to 'auto' for that user.

 

  1. Update the Unlock Option: Run the following command to change the unlock_option for the identified user to 'manual':

psql -U phoenix -d phoenixdb -c "update ph_user set unlock_option='manual' where id=<user_id>;"

 

Replace <user_id> with the actual ID of the user desired to be unlocked.

 

Note: Changing the unlock_option to 'manual' will enable the administrator to unlock the user manually from the GUI.
607
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.