To do this you have to directly log on to the unit and reset the password using “maintainer” account. Password has its own format and it will be bcpb<serial-number>.
Note: Letters of the serial number are in UPPERCASE format.
You will have only 14 seconds or less to type in the username and password. Therefore, be necessary to have the username and the password ready in a text editor and then copy and paste them into the login screen. There is no indicator of when your time runs out so it is possible that it might take more than one attempt to succeed.
- Connect to the Firewall through console port using terminal emulator such as Putty.
- Power off the Fortigate Firewall/Analyzer.
- Power on the Firewall.
- Wait for the Firewall name and login prompt to appear.
- Copy and paste the username and the password.
- Execute following commands to reset the password.
config system admin
set password XxXXxXxx
- Password is set.
Luis Rios says
I tried with that procedure and this is the message I got:
User must have a profile
object set operator error, -56 discard the setting
Command fail. Return code -56
Two possibilities here:
1. Maintainer access has been disabled by a previous adminstrator – if this is the case a factory reset is the only option, or
2. The “Admin” account doesn’t exist or has been renamed.
Worked like a champ for me on a 60E!
Michael R Bernal says
Worked like a charm.
Neo Wang says
Working on Fortigate 100D, v5.4.
Worked on 60d and 90D like a charm, no issues. Thank you
Working on Fortigate ,200F v7.4.
thanks, it work on 60e!
Working for 80F . Thanks heaps
Darn. Vendor must have hardened this 50E – as i get ‘login incorrect’ when i try this method.
Hi, I have a Fortigate 60D and fortigate has only a USB mgmt.
That’s why I can’t use putty, because I don’t have a serial connection. What can I do in this case.Thx.
Done bang thank you….