Fortinet Fortigate Devices (Legacy)

This is a guide for retrieving a configuration from legacy Fortinet Fortigate Devices. For non legacy devices see the Fortinet Fortigate Devices guide.

There are multiple different methods of extracting the configuration from your Fortinet Fortigate devices, this guide outlines two of those methods.

Using HTTP(S)

We would recommend using HTTPS rather than HTTP for transferring your devices configuration as the latter provides no encryption. The procedure for getting the configuration from the device using HTTP(S) is as follows:

  1. Using your favorite web browser, connect to the HTTP(S) service provided by your Fortinet Fortigate device for remote management. You can do this by entering "https://" (recommended) or "http://" followed by your devices IP address.

  2. Logon using your administration username and password.

  3. Select the Systems tab, then the Maintenance option.

  4. Click the Backup button to save the configuration to your computer

Using SSH, Telnet Or The Console

For this procedure you will be using the Command Line Interface (CLI) of your Fortinet Fortigate device using an SSH client (such as OpenSSH or Putty), Telnet or through the console port. We would recommend using either SSH (for remote connections) or using a direct connection to the console port. Telnet provides no encryption of the communications and therefore your authentication credentials and configuration would be vulnerable if a malicious user were to monitor your connection.

  1. Connect to the Fortinet Fortigate using your favorite SSH client, Telnet or a direct console connection.

  2. Logon using your administration authentication credentials.

  3. Execute the following CLI command and capture the output (possibly using the cut and paste facility):

    Copy 
    show full-configuration

  4. Save the captured output to a file and remove any visible page lines (i.e. --More--).

 

Using SSH, Telnet Or The Console

For this procedure you will be using the Command Line Interface (CLI) of your Fortinet Fortigate device using an SSH client (such as OpenSSH or Putty, if using putty change scrollback from 2000 to 200000 in the window settings), Telnet or through the console port. We would recommend using either SSH (for remote connections) or using a direct connection to the console port. Telnet provides no encryption of the communications and therefore your authentication credentials and configuration would be vulnerable if a malicious user were to monitor your connection.

 

  1. Connect to the Fortinet Fortigate using your favorite SSH client, Telnet or a direct console connection.

  2. Logon using your administration authentication credentials.

  3. Execute the following CLI command and capture the output (possibly using the cut and paste facility):

    Copy 
    show full-configuration
  1. Save the captured output to a file and remove any visible page lines (i.e. --More--).