Dear Community,
unfortunately, I have a bigger problem. I created a super-admin with a Fortitoken. Due to a defect, I had to factory reset my smartphone, and therefore I lost my Fortitoken. So I can no longer log into the firewall. I have a backup file with Fortitoken already activated, and the backup file is unfortunately also password encrypted, which is why I cannot remove the 2 factor line. Unfortunately, the maintainer account is also no option because the command Full Config is deactivated. Does anyone have any idea whether there is a possibility to activate the command Show Full Config for the maintainer account, or if there is any other possibility without having to reset up my entire system?
Thank you very much
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Is that the only admin account on the whole firewall? Can the maintainer account not also create a new user account? I'm not sure the answer to the 2nd question. The first should never be yes (big mistake to learn from if so). If so then I guess maybe you are out of luck. I would have thought you could run a CLI command to remove FortiToken from maintainer though.
I'd open a support ticket with CS, asking for technical support. Maybe there is a way to access the FGT via REST API without 2FA.
If not, you can only scratch the boot partition from the boot menu and rebuild.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1702 | |
1092 | |
752 | |
446 | |
228 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.