Resetting a FortiGate 30D to its factory default settings completely erases all user configurations—including firewall policies, VPN settings, and network interfaces—leaving the device as it was when first shipped. This process is essential for repurposing the hardware or recovering from a locked-out state. Core Reset Methods
Depending on your access level (physical or administrative), you can use one of three primary methods to perform a full reset. 1. Hardware Pinhole Reset (No Login Required)
This is the standard "hard" reset method if you have forgotten the admin password or cannot access the management interface. How to reset Fortigate 30D to factory default
To perform a full factory reset on a FortiGate 30D, use the command-line interface (CLI) for a software reset or the physical reset pinhole if you are locked out of the device. Method 1: Command-Line Interface (CLI)
This is the standard method if you have administrative access via a console cable or SSH.
Connect to the CLI: Use a console cable (RJ45 to DB9 or USB) and a terminal emulator like PuTTY with settings: 9600 baud, 8 data bits, no parity, 1 stop bit.
Log in: Enter the administrator credentials (default: username admin, no password).
Execute the Reset: Type the following command and press Enter:execute factoryreset.
Confirm: When prompted with Do you want to continue? (y/n), type y. The device will wipe all configurations and reboot automatically. Method 2: Physical Reset Button (Lockout Method)
Use this method if you cannot log in. The FortiGate 30D has a small RESET pinhole, typically located near the power connector or on the back panel. Power Cycle: Unplug the power from the device.
Hold Reset: Use a paperclip to press and hold the RESET button while plugging the power back in.
Observe LEDs: Continue holding for 10–30 seconds until the STATUS LED begins to flash amber or red.
Release: Release the button. The unit will boot with factory default settings. Post-Reset Defaults
Once reset, the device will be accessible using these defaults:
How to reset to Factory Default configura... - Fortinet Community
To perform a full factory reset on a FortiGate 30D
, you can use three primary methods: the physical reset button, the Command Line Interface (CLI), or the bootloader menu if you are locked out of the device. 1. Physical Reset Button
This is the most common method for low-end models like the 30D when you have physical access but no login credentials.
Locate the Pin: Find the small RESET pinhole on the device's chassis. Power Cycle Method: Power off the unit. fortigate 30d factory reset full
Insert a paperclip into the pinhole, then press and hold the button.
Power on the unit while continuing to hold the button for 10–30 seconds. Release when the status LEDs flash or change state.
Running State Method: Alternatively, press the reset button while the unit is already powered on. On some firmware versions, the STATUS LED will blink slowly about 80–90 seconds after boot; pressing it then triggers the reset. 2. Command Line Interface (CLI)
If you have administrative access via Console, SSH, or the Web GUI's CLI console, this is the cleanest method. Standard Reset: Use the command execute factoryreset.
Shutdown Reset: To reset and immediately power down the unit, use execute factoryreset-shutdown.
Selective Reset: If you need to keep basic system settings (like VDOMs or interface configs) but reset everything else, use execute factoryreset2. 3. Bootloader "Maintainer" Method
If you have lost the password and the physical button is disabled, use the console port and the maintainer account.
Connect: Use a console cable to connect your PC to the FortiGate. Reboot: Power cycle the device.
Login: When the login prompt appears, you have a very short window (usually 30 seconds) to log in with: Username: maintainer
Password: bcpb + the Serial Number of your 30D (use uppercase for letters).
Execute: Once logged in, type execute factoryreset and confirm. Post-Reset Defaults
Once the reset is complete and the unit reboots, use these credentials to log back in:
Default IP: 192.168.1.99 (usually on the Internal/LAN port). Username: admin Password: (Leave blank/Empty)
How to reset to Factory Default configura... - Fortinet Community
Mastering the FortiGate 30D: A Complete Guide to a Full Factory Reset
The FortiGate 30D, while now a legacy model, remains a workhorse for small offices and lab environments. However, there comes a time in every admin's life when a "clean slate" is necessary—whether you’ve inherited a locked device, misconfigured a complex VLAN, or are prepping the unit for decommissioning.
Performing a FortiGate 30D factory reset full procedure isn't just about clearing settings; it’s about restoring the device to its original "out-of-the-box" state. Here is every method to get it done. Method 1: The CLI "Factory Default" Command
If you still have administrative access to the device (via SSH or the Console port), this is the cleanest and fastest method. Resetting a FortiGate 30D to its factory default
Connect to your FortiGate using a terminal emulator (like PuTTY or Tera Term). Log in with your admin credentials. Type the following command:execute factoryreset
The system will ask for confirmation: Do you want to continue? (y/n). Type y.
The unit will reboot. Once the status light stabilizes, it is back to factory defaults. Method 2: The Physical Reset Button
If you are locked out of the management interface or don't have a console cable handy, the FortiGate 30D features a physical reset pinhole.
Locate the small hole labeled RESET on the back or side of the unit.
While the device is powered on, use a paperclip to press and hold the button.
Hold it for approximately 10–15 seconds. You should see the status LEDs flash or cycle. Release the button and wait for the unit to reboot. Method 3: The "Maintainer" Account (For Lost Passwords)
If you’ve forgotten the password and the reset button isn't doing the trick, you can use the "Maintainer" backdoor. This requires a physical console cable connection.
Connect your console cable and open your terminal (9600 baud rate).
Unplug the power from the FortiGate 30D and plug it back in. When the login prompt appears, you have a 30-second window. Username: maintainer
Password: bcpb followed by the Serial Number of your device (e.g., bcpbFGT30DXXXXXX). Note: The Serial Number must be in all caps.
Once logged in, immediately change the admin password or run the execute factoryreset command. Method 4: Formatting the Flash (The "Full" Reset)
For those who want to ensure the filesystem is completely wiped and the firmware is re-installed fresh, you can format the boot partition via the BIOS menu. Connect via Console cable.
Reboot the device and press any key when prompted to enter the configuration menu. Select the option to Format Flash.
After formatting, you will need to provide a firmware image via TFTP to make the device functional again. This is the "nuclear option" for a truly clean state. Post-Reset: What Happens Next?
Once the reset is complete, the FortiGate 30D reverts to its default identity: Default IP: 192.168.1.99 (usually on Internal Port 1) Default Username: admin Default Password: (Leave blank/None)
Pro Tip: Always remember to download a backup of your configuration (config.conf) before performing a reset if you plan on migrating settings to a new unit!
To perform a full factory reset on a FortiGate 30D , you have two main options: using the physical reset button Command Line Interface (CLI) 1. Using the Physical Reset Button Method 2: Using the Boot Menu (The "Format"
This method is useful if you are locked out and do not have the admin password. Power Cycle
: Unplug the power cable from the device and plug it back in. Locate Button : Find the small pinhole labeled on the front or back of the unit. Hold for 60 Seconds : Within the first 60 seconds
of the device booting up, use a paperclip to press and hold the reset button. Wait for Reboot : Keep holding until the
LED starts flashing or the device reboots. The system will wipe all settings and restart with factory defaults. 2. Using the CLI (Terminal)
Use this method if you have console access or can log into the web interface.
: Use a console cable or log into the web-based manager and open the CLI Console Execute Command : Type the following command and press Enter: execute factoryreset : When prompted with
: The firewall will clear all configurations and automatically reboot. Post-Reset Default Credentials
After the reset is complete, you can log in using these default settings: How to reset Fortigate 30D to factory default
If the hardware button method feels imprecise or isn't working (sometimes the button can be finicky), using the Boot Menu is the most reliable way to ensure a full format.
What you need:
The Steps:
Press any key to display configuration menu...
y (yes).Step 1: Connect to the Console Port Plug the console cable into the Console port on the FortiGate 30D (front panel). Connect the other end to your computer’s serial or USB port.
Step 2: Configure Terminal Settings Open PuTTY or your terminal application and set the following:
COM3 (or whatever port your OS assigns)960081NoneNoneStep 3: Log In to the FortiGate
Power on the device. You will see the boot log scroll in the terminal window. After boot completes, log in using your credentials (default: admin / blank).
Step 4: Execute the Factory Reset Command At the command prompt, enter the following commands sequentially:
config system global
set admin-maintainer disable
end
execute factoryreset
Step 5: Confirm the Action The system will prompt you:
This operation will reset the whole system configuration and reboot the system. Do you want to continue? (y/n)
Type y and press Enter.
Step 6: Await Reboot The FortiGate 30D will erase all settings (including the config partition) and reboot. After reboot, you will see the login banner for the factory default configuration.
Note: If you receive an error stating
factoryreset is not allowed, you must first disable admin-maintainer as shown above.
execute factoryreset from CLI.