Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
sbabu
Staff
Staff

Created on ‎09-19-2024 07:14 AM

Article Id 342509

Technical Tip: How to troubleshoot SSL VPN issue where no certificate pop-up appears and stuck at 40%

Description

 

This article describes the SSL VPN issue where no certificate pop-up appears and is stuck at 40% and eventually connection goes down.

 

Scope

 

FortiClient, FortiGate, SSL VPN.

 

Solution

 

Normally when the SSL VPN connection percentage reaches 40%, it is expected a certificate pop-up. 

However, in some scenarios, the certificate pop-up does not come and the VPN connection will be dropped eventually. 

 

SSL-VPN issue.png

 

SSL-VPN2.png

 

This could happen if configuring a well-known port as the SSL VPN port configuration.

 

Solution:

When these well-known ports are not used in the network, it is possible to remove them. If that well-known port is used in the network, then change the SSL VPN communication port in the SSL VPN settings of FortiGate firewall first and then change the port in FortiClient as well. 

325
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.