Technical Tip: ZTNA web portal SMB access or file upload issue
| Description | This article describes how to troubleshoot ZTNA SMB server accessibility issues. |
| Scope | FortiOS v7.6.6. |
| Solution | If the SMB server is not accessible or there are file upload issues in the FortiGate agentless ZTNA web portal, users may still be able to browse and download files, but experience problems when uploading to the SMB share.
The most common cause is incorrect configuration in the ZTNA web-portal-bookmark, specifically when the folder parameter includes a sub-path or file-extension restrictions.
Recommended fix: Go to the bookmark configuration and ensure the folder field contains only the server IP or hostname (remove any sub-folder path or extension filters).
config ztna web-portal-bookmark edit "bookmarks" config bookmarks edit "smb_bookmark" set apptype smb set folder "10.18.100.145/install " <----- In this example, '/install' should be removed. set domain "Fortinet-us" next end next end
If the issue persists, it is recommended to review the WAD logs for any HTTP 40xxx error codes.
[p:2801][s:42604][r:2686] wad_dump_fwd_http_resp :3135 hreq=0x7f1f7e111048 Forward response from Internal: HTTP/1.1 404 Not Found Strict-Transport-Security: max-age=31536000 Content-Security-Policy: frame-ancestors 'self'; object-src 'self'; script-src 'self' https: 'unsafe-eval' 'unsafe-inline' blob:; Connection: close Content-Type: text/html Cache-Control: no-cache X-Frame-Options: SAMEORIGIN X-XSS-Protection: 1; mode=block X-Content-Type-Options: nosniff Content-Security-Policy: frame-ancestors 'self' Content-Length: 194 This could be a known issue that has been fixed in versions 8.0.0 and 7.6.6 onward. |