Technical Tip: How to activate 'Save Password', 'Auto Connect', and 'Always Up' in FortiClient

Description

This article explains how to activate the 'Save Password', 'Auto Connect' and 'Always Up' options in FortiClient.

Scope

FortiGate.

Solution

 

• In some cases, when setting the save passoword feature, client auto negotiate option and client-keep-alive option, it is possible to encounter the following error:

 

 

• This is due to the unity-support option; unity-support: Enable/disable support for Cisco UNITY Configuration Method extensions. Note that Unity-support is disabled after IKE version is changed from v2 to v1
• To resolve this problem unset the unity-support option and then it is possible to successfully set the keep alive and auto-negotiate options.

 

Note:

The following features are not supported in the FortiClient 6.2.X - 7.0.2 v free versions:

• VPN auto-connect/always-up.
• VPN before logon.
• On-net/off-net.
• Host check features.
• Central management
• No feedback option & no diagnostic tool under help/info page.
• IKEv2 is not supported on FortiClient 6.2.x free version.
• TAC support.

Note:

v5.0 up to v7.0 are out of engineering support. These commands might be different on higher versions. Consider upgrading the firmware level on the device to a supported version (v7.2 up to v7.6). Check the firmware path and compatibility depending on the hardware model: FortiGate Upgrade Tool.

Related articles:

• Technical Tip: FortiClient licensing and support
• Configuring autoconnect with username and password authentication
• FortiClient feature comparison