Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
shin_amuro
New Contributor

Created on ‎02-02-2018 02:50 AM

Login failed from 127.0.0.1

Hi,

 

I am getting the following log every around 15 minutes on my 50E.

 

Administrator admin login failed from http(127.0.0.1) because of invalid password

 

Any has any idea on what is this could be?

 

Thanks

Labels:
49728
1 Solution
Wayne11
Contributor

Created on ‎02-03-2018 05:11 AM

I bet you use FortiAnalyzer. Check the login credentials you have configured on both sides, on the FAZ and the FG.

View solution in original post

28332
12 REPLIES 12
Wayne11
Contributor

Created on ‎02-03-2018 05:11 AM

I bet you use FortiAnalyzer. Check the login credentials you have configured on both sides, on the FAZ and the FG.

28333
plz
New Contributor
In response to Wayne11

Created on ‎09-17-2018 02:55 AM

Wayne1 wrote:

I bet you use FortiAnalyzer. Check the login credentials you have configured on both sides, on the FAZ and the FG.

 

Wayne1, my login credentials FG201E is the same as FAZ200F. 

i also got this event log and my customer wondering what is this "Administrator admin login failed from http(127.0.0.1) because of invalid password" anyone can explain to me.

23301
0 Kudos
Hosemacht
Contributor II
In response to plz

Created on ‎09-17-2018 04:07 AM

Hey there,

 

i think he means : go to you Analyzer-> Device Management -> Edit your Device and edit Admin User and Password.

 

Regards

sudo apt-get-rekt

sudo apt-get-rekt
23300
0 Kudos
emnoc
Esteemed Contributor III
In response to Hosemacht

Created on ‎09-17-2018 04:59 AM

Do you have a cluster?  The  FGT in a cluster uses  127.0.0.1 and telnet now that I think about it. Never seen http and the localhost in a admin auth messages.

 

Also add, make sure you  do not have a fortiexplorer hooked up to the  Fortigate, it also uses  127.0.0.1 and telnet. I bet this is your case and something is triggering because of this.

 

PCNSE 

NSE 

StrongSwan  

PCNSE NSE StrongSwan
23299
0 Kudos
plz
New Contributor
In response to emnoc

Created on ‎09-17-2018 10:22 AM

emnoc wrote:

Do you have a cluster?  The  FGT in a cluster uses  127.0.0.1 and telnet now that I think about it. Never seen http and the localhost in a admin auth messages.

 

Also add, make sure you  do not have a fortiexplorer hooked up to the  Fortigate, it also uses  127.0.0.1 and telnet. I bet this is your case and something is triggering because of this.

 

 

Hi emnoc,

Thank you so much for your reply. i think that make sense and i i disable FortiTelemetry. waiting for result checked. 

 

23299
0 Kudos
plz
New Contributor
In response to emnoc

Created on ‎09-17-2018 10:58 PM

emnoc wrote:

Do you have a cluster?  The  FGT in a cluster uses  127.0.0.1 and telnet now that I think about it. Never seen http and the localhost in a admin auth messages.

 

Also add, make sure you  do not have a fortiexplorer hooked up to the  Fortigate, it also uses  127.0.0.1 and telnet. I bet this is your case and something is triggering because of this.

 

Yes i have cluster and i try to find how to disable fortiexplorer or some thing related this behavior i can not found.

do you have recommend to do this.

23299
0 Kudos
plz
New Contributor
In response to Hosemacht

Created on ‎09-17-2018 10:51 PM

the_giraffe_that_wasnt_president wrote:

Hey there,

 

i think he means : go to you Analyzer-> Device Management -> Edit your Device and edit Admin User and Password.

 

Regards

it is the same admin and password.

23300
0 Kudos
plz
New Contributor
In response to Hosemacht

Created on ‎09-18-2018 03:42 AM

the_giraffe_that_wasnt_president wrote:

Hey there,

 

i think he means : go to you Analyzer-> Device Management -> Edit your Device and edit Admin User and Password.

 

Regards

Ok this issue was solve. Thanks.

23300
0 Kudos
Prab
New Contributor
In response to plz

Created on ‎09-18-2018 02:13 PM

This can also happen if you are managing the FGT from a FortiManager. The above solution will fix this issue.

23300
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.