Password recovery for EMS administrators 7.2.2
EMS 7.2.2 includes password recovery features as follows:
-
A global super administrator can reset the password for EMS local administrators from the EMS GUI.
-
If the EMS built-in administrator password is forgotten, a super administrator cannot access EMS. In this case, you can use the PasswordRecovery tool.
To reset the password for EMS local administrators:
When multitenancy is enabled, this option is only available in the global site.
-
Log in to EMS as a super administrator.
-
Go to Administration > Admin Users.
-
Edit the desired local administrator.
-
Enable Reset Password.
- EMS automatically generates a temporary password. If desired, click Generate to generate a new random password. Click Copy, then click Finish.
-
Log out of EMS.
-
Log in to EMS as the local administrator. In the Password field, paste in the temporary password.
-
EMS prompts you to update your password. Enter a new password, then click Submit.
To use the PasswordRecovery tool:
-
On the EMS machine, go to C:\Program Files (x86)\Fortinet\FortiClientEMS.
-
Run PasswordRecovery.exe.
-
A Command Prompt dialog opens. Enter
yes
to proceed. -
A temporary password is generated and copied to the clipboard.
-
Log in to EMS as admin and paste in the temporary password.
-
EMS prompts you to update your password. Enter a new password, then click Submit.
You must have administrator-level permissions for SQL to run PasswordRecovery.exe to create a temporary password. By default, Windows domain administrators and local administrators have administrator-level permissions to SQL. However, when logged in to the EMS machine as a local or domain user, you must run PasswordRecovery.exe as an administrator and provide local/domain administrator credentials. Otherwise, an error occurs. |