Connecting to the primary FortiGate
To connect to the primary FortiGate instance, you will need a login URL, a username, and a password.
- Construct a login URL in this way: https://<IPAddress>:<Port>/, where:
- Port refers to the Admin port specified in the section FortiGate configuration.
- IPAddress refers to the Public IPv4 address of the FortiGate and is listed on the Details tab for the instance. In the EC2 Management console, locate the primary instance as described in the section To verify the primary election:. Click the Instance ID for the primary instance.
- Open an HTTPS session in your browser and go to the login URL. Your browser will display a certificate error message. This is normal because the default FortiGate certificate is self-signed and not recognized by browsers. Proceed past this error. At a later time, you can upload a publicly signed certificate to avoid this error.
- Log in with the username admin and the Instance ID of the primary FortiGate instance.
As the primary FortiGate propagates the password to all secondary FortiGate instances, this is the initial password for all FortiGate instances.
You will need this initial password if failover occurs prior to the password being changed, as the newly elected primary FortiGate will still have the initial password of the previous primary .
- You will be prompted to change the password at the first-time login. It is recommended that you do so at this time.
You should only change the password on the primary FortiGate. The primary FortiGate will propagate the password to all secondary FortiGates. Any password changed on a secondary FortiGate will be overwritten.
- You will now see the FortiGate dashboard. The information displayed in the license widget of the dashboard depends on your license type.