FortiSandbox
FortiSandbox provides a solution to protect against advanced threats and ransomware for companies who don’t want to implement and maintain a sandbox environment on their own.
ojacinto
Staff
Staff
Article Id 329677
Description This article describes how to add a FortiSandbox admin user with the CLI.
Scope FortiSandbox v4.4.3 and later.
Solution

A new CLI command was added to create admin users on FortiSandbox.

From version 4.4.3 and later, the FortiSandbox CLI command 'system-admin -c' was added to allow users to create a system admin account on CLI:

 

FSA-TACVM> status
System:
       Version: v4.4.3-build0380 (GA)
       Serial Number: FSAVM0TM23001229
       FSA-VM License: Valid
       System Time: Wed Jul 31 18:04:23 2024 CDT
       HDD Data Disk:
               Used: 8 GB
               Inode Usage: 0.67%
               File System Size: 195 GB
               File System Check: Clean
       Boot Disk:
               File System Check: Clean
       Image Status Check: OK

       Windows VM: Initialized
       VM Internet Access: On

 

To see all the available options it is necessary to type the command 'system-admin -h'.

 

FSA-TACVM> system-admin -h
Usage: system-admin [-h|-c|-d]
-h Help information.
-c Create an Administrator account.
-u Administrator account name.
-p Administrator account password.
-e email address.
-o phone number.
-f[super-admin|read-only|device|netshare|<user defined profile>] Administrator account profile.
-t[local|ldap|radius|ldap_wildcard|radius_wildcard] Administrator account type.
-w[FTM|SMS|EMAIL] two-factor authentication method.
-l[en-us|ja|fr] language preference.
-ld LDAP server.
-lr RADIUS server.
-t4 trusted IPv4 hosts, separated by ;. example: 192.168.1.0/255.255.255.0;192.168.2.0/255.255.255.0
-t6 trusted IPv6 hosts, separated by ;. example: fd13:6918:e38c:edd5::1/64
-gd device group.
-gn netshare group.
-d Delete an Administrator account.
-u Administrator account name.
FSA-TACVM>

 

For example:

 

FSA-TACVM> system-admin -c -ueduardojgo -pFs4#mt1&24.5 -fsuper-admin -tlocal
Super admin (admin) successfully added a new Administrator account (eduardojgo) from command line.
FSA-TACVM>

 

Go to the FortiSandbox GUI and validate that a new admin user can be used to log into FortiSandbox.

 

ScreenHunter_222 Jul. 31 17.13.jpg

 

 

Additionally, it is also possible to remove the local accounts configured using CLI.

For example:

 

FSA-TACVM> system-admin -d -utactest
Super admin (admin) successfully deleted an Administrator account (tactest) from command line.