Skip to content

Creating user in Fortigate FortiOS ?

Prerequisites

  1. You need to have the IP address of the Fortigate device and the collector needs to have network access to connect to the device via SSH.
  2. You need to have a user with sufficient privileges

Example of creating a user account for collecting required data (with minimum privileges)

Here is an example how to create a "prof_nanitor" account profile with read-only access and a new audit account "nanitor" on the Fortigate device:

config system accprofile
   edit "prof_nanitor"
       set mntgrp read
       set admingrp read
       set updategrp read
       set authgrp read
       set sysgrp read
       set netgrp read
       set loggrp read
       set routegrp read
       set fwgrp read
       set vpngrp read
       set utmgrp read
       set wanoptgrp read
       set endpoint-control-grp read
       set wifi read
   next
end
config system admin
   edit "nanitor"
       set accprofile "prof_nanitor"
       set vdom "root"
       set password mypass
   next
end<br>

This gives the required permissions to the nanitor user.