FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Jackie_T
Staff
Staff
Article Id 191539

Description

 
This article describes the issue of not being able to log in to FortiGate GUI using VDOM Admin account.

An Admin account is created and assigned to certain VDOM, but upon trying to log in, a 'Login Incorrect' error message is displayed.
 
If assigned to the root VDOM, login is successful.
 
Scope
 
FortiGate.


Solution


By default, if an Admin profile is created that is used for per VDOM access, the login will only be permitted if the interface (that the user try to log into) belongs to one of the permitted VDOMs in the profile.

For example, user Peter belongs to a profile allow access to RED VDOM only.

 

If user Peter access to Port 1 IP which belongs to root VDOM, the user will not be able to access as the Port 1 is not part of RED VDOM.

This is expected behavior for FortiGate.

Related document: