Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
ssanga
Staff & Editor
Staff & Editor

Created on ‎11-16-2025 10:45 PM

Article Id 419117

Technical Tip: FortiGate GUI Displays Warning When Phase 1 and Phase 2 Proposals Do Not Match

Description This article describes an issue in which the FortiGate GUI displays an incorrect or misleading warning notification when the Phase 1 and Phase 2 VPN proposals do not match.
Scope FortiGate v7.6.3, v7.6.4.
Solution

Starting from v7.6.3, the following warning may appear if the Phase 1 and Phase 2 proposals do not include at least one common encryption/authentication pair:

SC1.png

 

SC2.png

 

If this warning is disregarded and the configuration is saved without aligning the encryption/authentication pairs, the GUI may then display:

SC3.png

 

This behavior is a GUI design issue. Despite the warnings, the VPN comes up successfully, and functionality is not impacted. Only the visual notifications are incorrect, but the underlying configuration operates as expected.

This issue has been resolved in:

  • v7.6.5 (scheduled to be released in November 2025).
  • v8.0.0 (scheduled to be released in February 2026).

These timelines for firmware release are estimated and may be subject to change.
119
0 Kudos
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.