Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Duy2003
New Contributor III

Created on ‎10-22-2024 08:33 PM

Fortianalyzer: Add new user with super-user rights and admin role

Hi team,
I created an admin account (local) with admin-profile as super-user. Although it is the highest privilege, I cannot add device/edit, even though I checked the information in the admin-profile (super-user) and selected the add Device feature.
Thanks

 

Labels:
411
0 Kudos
6 REPLIES 6
Jean-Philippe_P
Moderator
Moderator

Created on ‎10-25-2024 07:19 AM

Hello Duy2003, 

 

Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible. 

 

Thanks, 

Jean-Philippe - Fortinet Community Team
334
0 Kudos
Jean-Philippe_P
Moderator
Moderator

Created on ‎10-28-2024 01:34 AM

Hello,

 

We are still looking for an answer to your question.

 

We will come back to you ASAP.

 

Thanks,

Jean-Philippe - Fortinet Community Team
303
0 Kudos
Jean-Philippe_P
Moderator
Moderator

Created on ‎10-29-2024 01:52 AM

Hi again,

 

Can any of you @heng @vraev @emorlang_FTNT @AEK help @Duy2003 please?

 

Thanks in advance!

 

Jean-Philippe - Fortinet Community Team
291
0 Kudos
AEK
SuperUser
SuperUser

Created on ‎10-29-2024 04:15 AM

Hi Duy

Can you post a screenshot of the profile and the user, and the related CLI config as well?

AEK
AEK
280
heng
Staff
Staff

Created on ‎12-01-2024 09:19 AM Edited on ‎12-01-2024 09:20 AM

Hi there, is the authenticated admin user that you used to login matched a different profile? Hence you are not able to edit/add. etc.

 

You can run CLI to check what profile it being matched for the same login user.

 

FMG01 # diagnose system admin-session list

*** entry 0 ***
session_id: 61590 (seq: 0)
username: admin
admin template: admin
from: GUI(172.16.122.1) (type 1)
profile: Super_User
adom: root
session length: 29 (seconds)
idle: 17 (seconds)

NSE8
91
0 Kudos
sjoshi
Staff
Staff

Created on ‎12-01-2024 10:43 AM

It seems that even though you assigned the Super_User profile to the admin account, the issue might be related to the specific permissions granted within that profile. Double-check the settings in the Super_User profile to ensure that the necessary permissions for adding devices and editing are enabled. If the problem persists, consider reviewing the device group access settings and policy package access for that administrator account.

 
Let us know if this helps.
Salon Raj Joshi
80
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.