FortiClient EMS ZTNA certificate issues

Forum|Forum|2 years ago
November 20, 2023
2 replies
10528 views

I am currently running Forticlient EMS server version 7.0.10. I have 188 registered clients and we have recently updated the clients from version 7.0.9 to 7.0.10. One of our users can't to connect to the VPN anymore. They get connected for about 5 seconds and then disconnected. One thing I noticed is the computer for this user has a ZTNA Status of Revoked on the EMS server. I have uninstalled and reinstalled the client multiple times but it still shows the status as revoked. The logs are showing a [FortiESNAC 761 error] Could not find the desired certificate error in the logs. I noticed there isn't an EMS certificate in the personal certificate store on that PC but working computers do have a EMS certificate installed. I am finding almost no suggestions online for this issue other that deregister the client and re-register in EMS to get a new certificate but it isn't working.

peisenberg

Staff

ZTNA cert should not affect VPN connectivity. Did you checked FGT sslvpn logs to see any error ?

Dibiase79Author

New Member

I did open a ticket with support last Friday and they gathered a bunch off logs but I haven't heard back from them yet. The only thing I see in the sslvpn log is [sslvpndaemon 652 error] Broken pipe! Client is exited