Help
FortiClient
FortiClient proactively defends against advanced attacks. Its tight integration with the Security Fabric enables policy-based automation to contain threats and control outbreaks. FortiClient is compatible with Fabric-Ready partners to further strengthen enterprises’ security posture.
ctanev1
Staff & Editor
Staff & Editor

Created on ‎08-04-2022 06:17 AM Edited on ‎08-12-2025 07:10 AM By Moderator

Article Id 219748

Troubleshooting Tip: TLS Cipher Suites in Windows

Description This article describes how to troubleshoot SSL-VPN issue with TLS Cipher Suites in Windows.
Scope SSL VPN.
Solution

When troubleshooting SSL VPN issues with TLS Cipher Suites in Windows first, it is necessary to check that TLS Cipher Suites are configured in FortiGate.

 

For example from FortiGate config SSL-VPN settings:

 

set ciphersuite TLS-CHACHA20-POLY1305-SHA256

 

Microsoft info indicates Cipher Suites are not available in Windows 10.

 

However, they are available in Windows 11, as indicated in this Microsoft article .

 

Recommendations:

  1. Only Windows 11 is used with these Cipher Suites.
  2. Other Cipher Suites are available in all FortiOS versions for configuration.

 

For more details on the cipher suite, see Technical Tip: Understanding the cipher suite 1.2 supported by Fortinet devices.
1922
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.