Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
cpx
New Contributor II

Created on ‎01-22-2025 07:00 AM

Delete default admin on FortiManager, FortiAuthenticator, FortiAnalyzer and FortiClientEMS

We would like to delete the default admin accounts on FortiManager, FortiAuthenticator, FortiAnalyzer and FortiClientEMS and replace them with another generic account for security reasons.

 

Is it safe for all these systems to delete the default user admin? For FortiManager and FortiAuthenticator I can see inside the logs that there are some actions performed by the admin user internally from the system. So I would like to ensure that deleting the account won't break something.

 

Kind reagards

348
0 Kudos
1 Solution
dingjerry_FTNT
Staff
Staff

Created on ‎01-22-2025 08:44 AM

Hi @cpx ,

 

As long as the "Delete" option is available for those default admin accounts, yes, it's OK for you to delete them.

Regards,

Jerry

View solution in original post

320
4 REPLIES 4
dingjerry_FTNT
Staff
Staff

Created on ‎01-22-2025 08:44 AM

Hi @cpx ,

 

As long as the "Delete" option is available for those default admin accounts, yes, it's OK for you to delete them.

Regards,

Jerry
321
cpx
New Contributor II
In response to dingjerry_FTNT

Created on ‎01-22-2025 10:10 PM

Hi dingjerry_FTNT,

thanks for you response. I will have a look into this. For FortiAnalyzer and FortiManager the option is not available from gui but the administration guide states that it is possible from cli. So I sounds like a viable option. I will check this.

 

Kind regards

290
0 Kudos
dingjerry_FTNT
Staff
Staff
In response to cpx

Created on ‎01-22-2025 11:04 PM

Hi @cpx ,

 

I just did a quick test on my lab FMG:

 

1) In the GUI, when I selected the "admin" account, the "Delete" button was greyed out;  No matter whether I logged in with the "admin" account or not.

 

2) In CLI, I could delete the "admin" account while logging in with another "super_user" account.

Regards,

Jerry
284
cpx
New Contributor II
In response to dingjerry_FTNT

Created on ‎01-22-2025 11:22 PM

Hi dingjerry_FTNT,

 

thank you for this. I was able to delete the default admin user on

1. FortiManager via CLI

2. FortiAnalyzer via CLI

3. FortiAuthenticator via GUI

 

For FortiClientEMS I get an error that deletion failed on gui.

I found this in FortiClient EMS Administration Guide:

 

The built-in admin user account is always active. Allowed inactive days does not affect the admin account.

 

So I guess the admin cannot be deleted.

 

Kind Regards

281
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.