Fortinet FortiGate / FortiOS
Fortinetnetwork5 credentials1 default credential
Initial Administrator Login
fortinet-fortigate / initial-admin-login
FortiGate appliances use a local admin account for first login and management. Fortinet getting-started documentation describes signing in with username admin and no password before the operator sets a password.
Default credentials
adminLocation
FortiGate GUI, console, SSH, and REST APIInitial and ongoing administrative login surfaces
system admin configuration in FortiOS configuration exports
device backups and FortiManager/FortiGate configuration archives
Notes
The blank-password initial state is only for first access/new deployments and should be changed immediately; many appliances and managed deployments require or enforce a changed password.
Local Administrator Password
fortinet-fortigate / local-admin-password
FortiOS local administrators are configured under config system admin. Passwords may appear as encrypted set passwd or password material in configuration backups.
Looks like
pattern^\s*edit\s+"?[^"]+"?\s*$^\s*set\s+passwd\s+ENC\s+\S+Location
config system admin in FortiOS configuration
FortiGate GUI / SSH / CLI / APIManagement surfaces accepting administrator credentials
password managers, FortiManager managed secrets, and deployment vaults
configuration backups and support bundles
REST API Administrator Token
fortinet-fortigate / rest-api-admin-token
FortiGate REST API administrators use API keys/tokens for automation access. Tokens are supplied to the FortiOS API and inherit the configured API administrator profile.
Location
AuthorizationBearer token or API-token header material used by FortiOS REST API clients
automation scripts, Ansible inventory, Terraform provider config, and .env files
FORTIOS_ACCESS_TOKEN, FORTIGATE_TOKEN, FGT_TOKENCI/CD variables and automation secret stores
network automation repositories and tests
API client traces and failed request logs
Notes
FortiOS API tokens provide administrative API access according to the associated API administrator profile and trusthost restrictions.
IPsec VPN Pre-Shared Key
fortinet-fortigate / vpn-psk
FortiGate phase1-interface and related VPN objects can contain IPsec pre-shared keys used to authenticate VPN peers.
Looks like
pattern^\s*set\s+psksecret\s+ENC\s+\S+^\s*set\s+psksecret\s+"?[^"\r\n]+"?$Location
vpn ipsec phase1-interface / phase1 FortiOS configuration
configuration backups, support bundles, and migration exports
network-as-code and VPN provisioning templates
SNMP / RADIUS / TACACS+ Shared Secrets
fortinet-fortigate / snmp-and-aaa-secrets
FortiOS stores SNMP community strings and AAA server shared secrets for monitoring and centralized authentication.
Looks like
pattern^\s*set\s+community\s+"?[^"\r\n]+"?$^\s*set\s+secret\s+ENC\s+\S+Location
system snmp community and user radius/tacacs/ldap server configuration
FortiGate configuration backups and FortiManager exports
monitoring and AAA provisioning templates
Scope
Authorized use
LOLCreds helps map the credential surface of real products: known defaults, generated values, credential locations, and exposure patterns.