This article describes how to add a FortiSandbox admin user with the CLI.
Scope
FortiSandbox v4.4.3 and later.
Solution
A new CLI command was added to create admin users on FortiSandbox.
From version 4.4.3 and later, the FortiSandbox CLI command ‘system-admin -c’ was added to allow users to create a system admin account on CLI:
FSA-TACVM> status System: Version: v4.4.3-build0380 (GA) Serial Number: FSAVM0TM23001229 FSA-VM License: Valid System Time: Wed Jul 31 18:04:23 2024 CDT HDD Data Disk: Used: 8 GB Inode Usage: 0.67% File System Size: 195 GB File System Check: Clean Boot Disk: File System Check: Clean Image Status Check: OK Windows VM: Initialized VM Internet Access: On
To see all the available options it is necessary to type the command ‘system-admin -h’.
FSA-TACVM> system-admin -h Usage: system-admin [-h|-c|-d] -h Help information. -c Create an Administrator account. -u Administrator account name. -p Administrator account password. -e email address. -o phone number. -f[super-admin|read-only|device|netshare|<user defined profile>] Administrator account profile. -t[local|ldap|radius|ldap_wildcard|radius_wildcard] Administrator account type. -w[FTM|SMS|EMAIL] two-factor authentication method. -l[en-us|ja|fr] language preference. -ld LDAP server. -lr RADIUS server. -t4 trusted IPv4 hosts, separated by ;. example: 192.168.1.0/255.255.255.0;192.168.2.0/255.255.255.0 -t6 trusted IPv6 hosts, separated by ;. example: fd13:6918:e38c:edd5::1/64 -gd device group. -gn netshare group. -d Delete an Administrator account. -u Administrator account name. FSA-TACVM>
For example:
FSA-TACVM> system-admin -c -ueduardojgo -pFs4#mt1&24.5 -fsuper-admin -tlocal Super admin (admin) successfully added a new Administrator account (eduardojgo) from command line. FSA-TACVM>
Go to the FortiSandbox GUI and validate that a new admin user can be used to log into FortiSandbox.
