VPN pre-shared key

Never had those issues, but I did have issues with special chars (about 1-2 year ago tho' haven' t tested it with recent versions). So I don' t use special chars anymore. Pasting things like this always goes fine for me tho' (linux pwgen -s 40 1): lzcgpIiSndD5mRO0f0lrLIhJtHbG0RGAdVo4NfEJ

Paul, I have had some issues before with Fortimanager where I copied and pasted a password and it failed. When typing the password by hand (and comparing to the clipboard to make sure it matched) it worked. No workaround at this point.

Take a look at the backup file. The pre-shared key is encrypted. You can paste this encrypted version into another box in the correct area, and be done with the whole mess...

You can copy the PSK using the cli: config vpn ipsec phase1 edit " yourphase1" set psksecret yourverycomplexpsk next end martin

I think what Paul is mentioning is the following: -Create a random pre-shared key -Copy and paste the random key into the Web GUI so before you even get to the stage of copying it to other units. Let' s say you email the key to the other side that is using a non-Fortigate unit. So potentially the pre-shared keys don' t match. I have run into this before also where I had to manually retype the admin password into Fortimanager, copy and paste inserted something into the admin password field but not the admin password ;)

loorimar, Yes, that' s exactly what I mean. I have to manually type it in to the FortiGate to get it to work. I' m going to try mhe' s suggestion and copy-and-paste it using the CLI. I found out something when I did that: there is an 80 character limit. NOTE: This was not a problem I had before since I only tested it out with a 24 character PSK before. I know Windows has a 256 character limit for passwords so that' s what I like to use for ultimate security. I' ll test out the VPN tonight and see it the copy-and-paste in the CLI works.

OK, I tried the copy and paste in the CLI but that didn' t work either. Just to clarify what I mean if anybody is still confused, I CAN copy and paste into the GUI and the CLI, but when I do, the VPN doesn' t work. Anyway, my VPN does work so I shouldn' t really complain. I created a random 80 character password, entered it manually into the FortiGate, copied and pasted it into the FortiClient, and the VPN works.

I used uppercase, lowercase, and special characters in the pre-shared key and it worked OK when I typed them into the FortiGate. I' ll check to see the character set between the source and destination are the same to see if that caused problems with the copy-and-paste. It might save me some time if anybody can tell me what format Notepad (my source) uses and what format the FortiGate (my destination) uses.

Abelio, what Paul and I have seen is this scenario: -Create a random password in Notepad -Copy to Windows Clipboard -Paste into Fortinet Web GUI in IE or Firefox So it' s not a case of pasting into any type of terminal application, it' s simply copying and pasting from notepad to Internet Explorer or Firefox (I have seen this with both browsers so that would indicate it' s a FW GUI issue).

FYI, this also happens with shorter passwords, say 10-16 characters.