Retrieving passwords from Fortigate

 https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-Recover-BGP-Password/ta-p/414414

 1. Copy ENC password from CLI

sh vpn ipsec phase1-interface test-vpn-tunnel
config vpn ipsec phase1-interface
    edit "test-vpn-tunnel"
        .....
        set psksecret ENC tP2sK9fIsnZfffZg9cG6u5hkyC/MUVXBsIcaOTJlH2cV4K89XjE86c98KyolJrmiWJsQqT12rK82a1o2EiUZFWrTxik8JQegsPVbIZvq2qIPfcNCifgQAco/NjuQ4f5PyIipJzS5tyWMbysWYsP4GTNlQ==
    next
end

 2. Create an SSID in Fortigate (enable WiFi Controller under System -> Feature Visibility) 

    2.1. Set Pre-shared Key -> Passprase

    2.2 Edit in CLI & change the passphrase of the SSID to the BGP password copied from Step 1

config wireless-controller vap
    edit "TEST"
        set passphrase ENC <----- Encrypted BGP Password copied from Step 1.
    next
end

3. From FortiGate GUI, go to WiFi Controller -> SSID -> Edit SSID. On the 'Passphrase' parameter, select the 'eye' icon to reveal the password.

 That method is tested and confirmed working on Fortigate 7.0 for local users, radius secret, IPSec PSK

 

Another way of retrieving IPSec PSK password:  

Retrieving IPsec VPN PSK key from Fortigate