Fortigate 30d Factory Reset Full Exclusive (2025)

How to Perform a Full Factory Reset on a FortiGate 30D Resetting your FortiGate 30D

to its factory default settings is a common troubleshooting step, especially if you've lost admin access or need to clear out an old configuration for a fresh start. This guide covers the two most effective methods: the physical reset button and the Command Line Interface (CLI). Important: Before You Start A factory reset will completely erase

all firewall policies, VPN settings, and custom configurations. If you still have access, it is highly recommended to backup your configuration Default Credentials (Post-Reset): (leave blank) Default IP: 192.168.1.99 Method 1: Using the Physical Reset Button (Pinhole)

This is the best method if you are locked out of the device and don't have a console cable. Locate the Reset Button : On the FortiGate 30D, look for a small pinhole labeled on the back panel near the power connector. Power Cycle

: Unplug the power cable and wait about 10 seconds, then plug it back in. Timed Press : Wait for the

LED to start blinking slowly (usually within 30–60 seconds of booting). Hold and Release : Insert a paperclip into the pinhole and hold it for about 15–30 seconds

: The STATUS LED should begin blinking faster, and the unit will automatically reboot. Once it finishes, it will be back to factory defaults. Method 2: Using the CLI (Command Line)

If you have access via a console cable or the web-based CLI console, this is the quickest method. How to reset Fortigate 30D to factory default fortigate 30d factory reset full

Steps:

1. Locate the small reset button (pinhole) on the back panel of the 30D.
2. With the device powered ON, use a paperclip to press and hold the reset button for 15–20 seconds.
3. Watch the front LED panel: All lights will flash, then the device will reboot automatically.
4. Release the button.

After reboot, the device reverts to factory settings. Limitation: If the previous owner disabled the reset button via config system admin or the OS is corrupted, this method will fail.

Method 2: Console + TFTP (Full Recovery / Firmware Reinstall)

Use this if the reset button fails, the device is stuck in a boot loop, or you want to wipe and reinstall the firmware (the most "full" reset possible).

Requirements:

• FortiGate 30D firmware image (e.g., FGT_30D-v6-buildxxxx-FORTINET.out). Note: Since the 30D is end-of-life, obtain this from Fortinet Support (requires contract) or a backup.
• TFTP server (e.g., SolarWinds Free TFTP, Tftpd64) on a PC.
• Console cable (RJ45-to-DB9 or USB-to-serial) and terminal software (PuTTY, baud rate 9600).
• Ethernet cable connecting your PC to the FortiGate’s Port1.

Steps:

1. Prepare TFTP: Set server IP to 192.168.1.10 (or 192.168.1.x). Place the firmware image in the TFTP root directory.
2. Connect console to the FortiGate. Open PuTTY (serial, 9600 baud, 8 data bits, 1 stop bit, no parity).
3. Power on the FortiGate. Immediately press any key (usually Esc) when you see:

   Press any key to enter menu...
   

   You will see the BIOS menu (options 1–6).
4. Select option [G] or [4] (varies by firmware): "Load firmware from TFTP server".
5. Follow prompts:
   • Enter interface: port1
   • IP address for device: 192.168.1.99
   • TFTP server IP: 192.168.1.10
   • Filename: (exact name of the .out file)
6. The firmware will upload and flash. After completion, the FortiGate reboots automatically.
7. Post-reset: It will be at factory defaults (192.168.1.99, admin/no password). Optionally, run execute factoryreset from the CLI after boot for double measure.

Method 1: The "Full" Factory Reset via Console (Most Thorough)

This is the gold standard. It works even when the device is bricked, stuck in boot loop, or has a corrupted filesystem.

2. Physical Reset Button (on the device itself)

• Locate the small reset button on the front or back panel (use a paperclip).
• For full reset: Press and hold the button for 15–20 seconds (until all LEDs flash or power LED blinks rapidly).
• Release — the device will reboot with factory defaults.
• Note: A short press (3–5 seconds) usually just reboots the unit without resetting config.

Troubleshooting:

• Cannot access 192.168.1.99? Manually set your PC to 192.168.1.10, subnet 255.255.255.0. Disable other network adapters.
• Web interface not loading? Try HTTP (http://192.168.1.99) – some older firmware defaults to HTTP. Then enable HTTPS after login.
• Forgot password after reset? Repeat the console cable method (Method 2) – that always works.

⚠️ Final note: The FortiGate 30D cannot run FortiOS 6.2 or newer. Maximum supported version is FortiOS 6.0.x (or 5.6.x for very early hardware revisions). Do not attempt to load firmware for other models – it will brick the device.

To perform a full factory reset on a FortiGate 30D, use the command-line interface (CLI) for a software reset or the physical reset pinhole if you are locked out of the device. Method 1: Command-Line Interface (CLI) How to Perform a Full Factory Reset on

This is the standard method if you have administrative access via a console cable or SSH.

Connect to the CLI: Use a console cable (RJ45 to DB9 or USB) and a terminal emulator like PuTTY with settings: 9600 baud, 8 data bits, no parity, 1 stop bit.

Log in: Enter the administrator credentials (default: username admin, no password).

Execute the Reset: Type the following command and press Enter:execute factoryreset.

Confirm: When prompted with Do you want to continue? (y/n), type y. The device will wipe all configurations and reboot automatically. Method 2: Physical Reset Button (Lockout Method)

Use this method if you cannot log in. The FortiGate 30D has a small RESET pinhole, typically located near the power connector or on the back panel. Power Cycle: Unplug the power from the device.

Hold Reset: Use a paperclip to press and hold the RESET button while plugging the power back in. Locate the small reset button (pinhole) on the

Observe LEDs: Continue holding for 10–30 seconds until the STATUS LED begins to flash amber or red.

Release: Release the button. The unit will boot with factory default settings. Post-Reset Defaults

Once reset, the device will be accessible using these defaults:

How to reset to Factory Default configura... - Fortinet Community

2. Change the Default Password Immediately

Log in with admin (no password). Go to System > Administrators (or CLI: config system admin) and set a strong password. Leaving the password blank is a critical security risk.

2. GUI Factory Reset (when accessible)

1. Log in to the FortiGate web interface as an administrator.
2. Go to System → Settings.
3. Click Restore Factory Default (or “Reset to Factory Defaults”).
4. Confirm the action.
5. Device will reboot and return to default configuration (admin account with no password, DHCP on internal interface).

Note: Some firmware versions show “Reset” under System → Dashboard widgets.

Prerequisites: Before You Begin

Before attempting a full reset, gather the following:

1. Console Cable (RJ-45 to DB9 or USB): The FortiGate 30D uses a rollover RJ-45 console port. This is mandatory for Method 1 (The "Full" Method).
2. Terminal Emulator: PuTTY (Windows), Screen (macOS/Linux), or Tera Term.
3. Serial Settings: 9600 baud, 8 data bits, 1 stop bit, No parity, No flow control.
4. Paperclip or Reset Tool: For hardware button method.
5. Power Supply: 12V DC adapter for the 30D.

Warning: A full factory reset removes ALL configurations, including interface IPs, routing, firewall policies, SSL VPN certificates, and local user databases. Backup your config first if you have access (execute backup config tftp <filename> <tftp_server_IP>).