Authentication SSL- VPN With Compter Certificate

I've never seen this set up before, so let me ask you this:

How are the devices presenting the certificate to the forticlient, to connect to the vpn?

Because the pki user, needs to be an actual user who is going to select the certificate on the client to present it to the firewall, as a mean of authentication.

I need just to authenticate with Computer certificate ,

Hey Noureddine,

- machine certificate authentication is principally possible

- FortiGate needs to be set up for authentication, and you should make sure that ALL machine certificates match the 'user peer' you have defined

-> as your 'user peer' set-up is right now, any certificate issued by the 'dom-SRVAD-CA' certificate would be accepted

Please note that users, when establishing the VPN, will need to manually select the machine certificate in the drop-down menu FortiClient offers.

A guide to SSLVPN with certificate authentication:

https://docs.fortinet.com/document/fortigate/7.0.2/administration-guide/266506/ssl-vpn-with-certificate-authentication

A guide to allowing machine certificates to be used:

https://community.fortinet.com/t5/FortiClient/Technical-Tip-How-to-use-certificates-from-Local-machine/ta-p/193246

Hey @Noureddine did you get this to work?