Setting Up The System

Connecting to the FortiMail CLI for the first time

For the initial configuration, you can access the CLI from your management computer using either of these two ways:

  • a local serial console connection
  • an SSH connection, either local or through the network

To connect to the CLI using a local serial console connection, you must have:

  • a computer with a serial communications (COM) port
  • the RJ-45-to-DB-9 serial or null modem cable included in your FortiMail package
  • terminal emulation software, such as HyperTerminal for Microsoft Windows To connect to the CLI using an SSH connection, you must have:
  • a computer with an Ethernet port
  • a crossover Ethernet cable
  • an SSH client, such as PuTTY

Table 4: Default settings for connecting to the CLI by SSH

Network Interface port1
IP Address 192.168.1.99
SSH Port Number 22
Administrator Account admin
Password (none)

To connect to the CLI using a local serial console connection

  1. Using the RJ-45-to-DB-9 or null modem cable, connect your computer’s serial communications (COM) port to the FortiMail unit’s console port.
  2. Verify that the FortiMail unit is powered on.
  3. On your management computer, start HyperTerminal.
  4. On Connection Description, enter a Name for the connection, and select OK.
  5. On Connect To, from Connect using, select the communications (COM) port where you connected the FortiMail unit.
  6. Select OK.
  7. Select the following Port settings and select OK.
Bits per second 9600
Data bits 8
Parity None
Stop bits 1
Flow control None
  1. Press Enter.

The terminal emulator connects to the CLI, and the CLI displays a login prompt.

  1. Type admin and press Enter twice. (In its default state, there is no password for this account.)

The CLI displays the following text:

Welcome!

Type ? for a list of commands.

You can now enter commands. For information about how to use the CLI, including how to connect to the CLI using SSH or Telnet, see the FortiMail CLI Reference.

To connect to the CLI using an SSH connection

  1. On your management computer, configure the Ethernet port with the static IP address 192.168.1.2 with a netmask of 255.255.255.0.
  2. Using the Ethernet cable, connect your computer’s Ethernet port to the FortiMail unit’s port1.
  3. Verify that the FortiMail unit is powered on.
  4. On your management computer, start your SSH client.
  5. In Host Name (or IP Address), type 168.1.99.
  6. In Port, type 22.
  7. From Connection type, select SSH.
  8. Select Open.

The SSH client connects to the FortiMail unit.

The SSH client may display a warning if this is the first time you are connecting to the FortiMail unit and its SSH key is not yet recognized by your SSH client, or if you have previously connected to the FortiMail unit but it used a different IP address or SSH key. If your management computer is directly connected to the FortiMail unit with no network hosts between them, this is normal.

  1. Click Yes to verify the fingerprint and accept the FortiMail unit’s SSH key. You will not be able to log in until you have accepted the key.

The CLI displays a login prompt.

10.Type admin and press Enter. (In its default state, there is no password for this account.)

The CLI displays the following text:

Type ? for a list of commands.

You can now enter commands. For information about how to use the CLI, including how to connect to the CLI using SSH or Telnet, see the FortiMail CLI Reference.


Having trouble configuring your Fortinet hardware or have some questions you need answered? Check Out The Fortinet Guru Youtube Channel! Want someone else to deal with it for you? Get some consulting from Fortinet GURU!

This entry was posted in Administration Guides, FortiMail and tagged , on by .

About Mike

Michael Pruett, CISSP has a wide range of cyber-security and network engineering expertise. The plethora of vendors that resell hardware but have zero engineering knowledge resulting in the wrong hardware or configuration being deployed is a major pet peeve of Michael's. This site was started in an effort to spread information while providing the option of quality consulting services at a much lower price than Fortinet Professional Services. Owns PacketLlama.Com (Fortinet Hardware Sales) and Office Of The CISO, LLC (Cybersecurity consulting firm).

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.