This article explains what to do when access to the admin password for a FortiManager or FortiAnalyzer unit is lost.
The maintainer account has been removed for FortiManager or FortiAnalyzer products running:
- 5.2 for patches 8 or later
- 5.4 for any patch level
For newer FortiManager or FortiAnalyzer products, there is no password recovery mechanism (maintainer account) as there is in FortiOS.
There are two approaches for dealing with this scenario.
|Special precautions must be taken if workflow mode is in use (see below).|
|System settings include IP and routes. Access to the serial console to reconfigure IP and routing is required to restore remote connectivity.|
|For FortiManager and FortiAnalyzer VMs, the above step is not an option.
Workflow sessions are lost when using this approach.
|Prior to running exec migrate:
If workflow mode was in use on the original unit, workflow mode should be enabled on the new unit PRIOR to running exec migrate.
If this order is followed, workflow sessions are preserved.
Also, if multiple ADOMs were previously in use, enable ADOMs first.
Technical Note: Using 'exec migrate' to migrate to a new FortiAnalyzer / FortiManager model
Technical Tip: How to recover access to FortiManager or FortiAnalyzer when the admin password is los...
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2023 Fortinet, Inc. All Rights Reserved.