Forticlient android 7.4.2.0179 problem

Forum|Forum|10 months ago
July 22, 2025
2 replies
1270 views

Dear all, I am moving from SSL VPN to Ipsec, which I have not had any problems with with the Notebooks, the problem I have had is with the Android client which does not have SHA256 security, has anyone had the same problem?

FortiClient

AEK

SuperUser

Hi SuperCanal

I have FCT 7.4.3 and when creating IPsec with IKEv2 it supports SHA-256 up to SHA-512. While the same version IKEv1 doesn't offer above SHA-128.

Same for FCT VPN (free version).

AEK

SupercanalAuthor

New Member

Thanks, yes we realized, the problem now we have is that when we try to connect to the VPN and it asks us for two-factor authentication, which is through authenticator, when we exit the application to enter the number it is as if the VPN closes, we do not know if we have to enable something in the EMS profile WhatsApp Image 2025-07-22 at 16.24.29.jpeg

FortiDor

Explorer II

Hello @Supercanal

Perhaps you can edit the EMS profil to open the Azure authentication for the MFA challenge in an external browser — additional options in 7.4.3 EMS version
I have already tested on Windows devices but not on Android so I am not certain of the result

Let me tell me if it can help you or not

sharmar

Staff & Editor

Hello @Supercanal

There are few limitation with forticlient Ipsec android, the major one is Ipsec does not support combining multiple authentication methods. For example, you cannot have a VPN that uses both PSK and SAML SSO sign in methods simultaneously. This limitation comes from the built-in VPN client API.

This doc would be helpful for you : https://docs.fortinet.com/document/forticlient/7.4.0/android-administration-guide/189805/creating-an-ipsec-vpn-ikev2-connection

Thanks

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded