FortiClient v7.2.4 is running on the latest Windows 11. Users have two certificates with private keys in the Windows Key store in Personal Certificates. When connecting to FortiClient VPN, the drop-down menu only shows one certificate for selection.

Two certificates can be seen when creating a new SSL/IPsec connection. After saving the connection profile, only one certificate is shown in the drop-down menu.

Edit the XML configuration file, and put the 'show_auth_cert_only' parameter from 1 to 0 as below.

The configuration below did not show all available certificates.

SSL VPN:

<forticlient_configuration>
<sslvpn>
<options>
<show_auth_cert_only>1</show_auth_cert_only>
</options>
</sslvpn>
</forticlient_configuration>

IPSEC VPN:

<forticlient_configuration>
<ipsecvpn>
<options>
<show_auth_cert_only>1</show_auth_cert_only>
</options>
</ipsecvpn>
<forticlient_configuration>

It is resolved after changing 'show_auth_cert_only' to 0 and saving the XML configuration file:

SSL VPN:

<forticlient_configuration>
<sslvpn>
<options>
<show_auth_cert_only>0</show_auth_cert_only>
</options>
</sslvpn>
</forticlient_configuration>

IPSEC VPN:

<forticlient_configuration>
<ipsecvpn>
<options>
<show_auth_cert_only>0</show_auth_cert_only>
</options>
</ipsecvpn>
<forticlient_configuration>