Skip to main content
LGPC
LGPC
New Member
November 6, 2014
Solved

VPN wrong Username/Password?

  • November 6, 2014
  • 6 replies
  • 48851 views

Hello,

 

a short time ago I changed to NAT mode and now I want to connect with SSL VPN from everywhere to my Network.

I configured everything and entered the CORRECT username and password in the VPN client on my notebook. I also addet my vpn user to a group which hast full SSL VPN Access. But everytime I connect it says: Can´t login username or password might be wrong (-12)

Has anyone a idea why this isn´t working?

Best answer by Dipen

So you have not able to connect on default 10443 port. What alternate port are you using. If you have changed port in Portal, you need to change port in SSL-VPN client as well.

If it is a port issue then Portal should not open at all. Authentication should not be an issue with VPN Portal Port.

 

6 replies

evince
evince
New Member
November 14, 2014

Hello,

 

Did you assign your group to the policy?

LGPC
LGPCAuthor
New Member
November 17, 2014

Thanks,

 

I added my vpnuser Group to my VPN Policy and did everything like I saw in in different videos and docs. But  it wont connect. At 80% there is this -12 error.

evince
evince
New Member
November 17, 2014

Hello,

 

Try via your portal : https://yourip:10443

 

Then check the logs, maybe they'll help you and show you where the problem is.

Dipen
Dipen
New Member
November 18, 2014

Firstly are you using a local user database or a remote Server as Active Directory (LDAP) ?

In case of local user , please confirm the local user is not disabled.

 

please confirm the FortiOS version with a snapshot of the policy.

emnoc
emnoc
New Member
November 18, 2014

Suggestion:

 

Instead of guessing, why don't you use  the diagnostics

 

diag debug reset

diag debug en

diag debug app sslvpn -1

 

It will probably show exactly what the problem(s)

 

 

LGPC
LGPCAuthor
New Member
November 18, 2014

Ok guys, thanks for your answers.

 

I changed the HTTPS port to another port and now I can connect to the web interface (portal) of the SSL connection.

At the portal I can click connect in the section tunnel mode. Then the forticlient automatically connects to my VPN an i can Access the Internet over it. If I do the same when I´m not logged in in the portal (only in in the fortclient) then it says again wrong username / password (-12) so I think my policy is correct. But why can´t I login to the VPN with the FortiCLient ony?

Dipen
DipenAnswer
New Member
November 18, 2014

So you have not able to connect on default 10443 port. What alternate port are you using. If you have changed port in Portal, you need to change port in SSL-VPN client as well.

If it is a port issue then Portal should not open at all. Authentication should not be an issue with VPN Portal Port.

 

LGPC
LGPCAuthor
New Member
November 18, 2014

Yeah your last sentence was my answer!

 

I used the SSL port in the Forticlient. Now I tried the Portal port and it finally works!

 

Thanks a lot

Terms & ConditionsAccessibility statement