In various scenarios, you may want to recover psk plaintext from encrypted format out of a FortiGate or from a FortiGate config backup.<\/p>\n\n\n\n
Method 1:<\/strong><\/p>\n\n\n\n “Print\nInstructions” menu through a FortiClient profile, ther are 2 alternatives\nfor recovering PSK:<\/p>\n\n\n\n I don\u2019t\nremember if you need to change existing tunnel or duplicate tunnel or restore a\nfake config \u2026<\/p>\n\n\n\n https:\/\/forum.fortinet.com\/tm.aspx?m=137961<\/a><\/p>\n\n\n\n Method 2:<\/strong><\/p>\n\n\n\n 1) Log in\ninto the web-interface as a (super?) admin.<\/p>\n\n\n\n 2) Change\nyour url\/path to https:\/\/fortigateip\/api\/v2\/cmdb\/vpn.ipsec\/phase1-interface?plain-text-password=1<\/a><\/p>\n\n\n\n 3) Firefox\nunderstands the JSON reply. I hope your browser does too. Search for the term\n“psksecret” on the page. Passwords\/secrets should be listed as plain\ntext passwords now.<\/p>\n\n\n\n Method 3:<\/strong><\/p>\n\n\n\n You can\nalways view the Pre-Shared Key of a WiFi SSID via the GUI. But since\nFortiGate\/FortiOS uses the same algorithm for storing these passwords as for\n(say) phase1 PSK’s, you can simply:<\/p>\n\n\n\n Create a\ndummy SSID via the GUI.<\/p>\n\n\n\n Change the\npassword from CLI.<\/p>\n\n\n\n config\nwireless-controller vap<\/p>\n\n\n\n edit\n“dummy-decrypt”<\/p>\n\n\n\n set\npassphrase ENC some-base64-string-from-phase1-PSK<\/p>\n\n\n\n end<\/p>\n\n\n\n Go back to\nthe GUI.<\/p>\n\n\n\n Edit the\ndummy SSID.<\/p>\n\n\n\n Push the\neye logo to reveal the SSID\/PSK\/whatever password.<\/p>\n\n\n\n I conclude that the encoding method\/key must be somewhat fixed in FortiOS (since a FortiVM can decode passwords as well). <\/p>\n\n\n\n By design, password can’t be be salted or they will be no way to restore a config file during RMA process from example.<\/p>\n\n\n\n Note: All three methods do not all work on any FortiOS versions.<\/p>\n","protected":false},"excerpt":{"rendered":" In various scenarios, you may want to recover psk plaintext from encrypted format out of a FortiGate or from a FortiGate config backup. Method 1: “Print Instructions” menu through a FortiClient profile, ther are 2 alternatives for recovering PSK: I… Continue Reading