If the password has been lost for a FortiSwitch managed by FortiGate, it can still be modified.

On the FortiGate, modify the default switch profile to apply the same password to all FortiSwitches managed by the same FortiGate.

config switch-controller switch-profile

edit "default"

set login-passwd-override enable      <- Enable password override on FortiSwitch.

set login-passwd ********             <- Set new password.

next

end

If it would be preferred to avoid changing the admin password on all FortiSwitches, create a switch profile and assign it to one switch.

config switch-controller switch-profile

edit "setpass"                            <- New switch profile.

set login-passwd-override enable       <- Enable the password override on the FortiSwitch.

set login-passwd ********              <- Set a new password.

next

end

config switch-controller managed-switch

edit "S224EPXXXXXXXX"                    <- Switch ID to modify.

set switch-profile "setpass"          <- Assign switch profile.

end

Note:

If the password change does not work, check the configuration sync status for errors. Review it with the following command:

exec switch-controller get-sync-status all

FortiSwitch in standalone mode does not have a way to recover the admin password. The only way to do this is to perform a factory reset.