Help
FortiNAC
NOTE: FortiNAC is now named FortiNAC-F. For post-9.4 articles, see FortiNAC-F. FortiNAC is a zero-trust network access solution that provides users with enhanced visibility into the Internet of Things (IoT) devices on their enterprise networks.
dsull111
Staff
Staff

Created on ‎05-10-2024 07:56 AM Edited on ‎06-10-2025 01:13 AM By Community Manager

Article Id 314299

Troubleshooting Tip: MacOS persistent agent SSL_get_verify_result = 14

Description

This article describes a scenario where the Persistent Agent on a MacOS device is unable to communicate with FortiNAC, and agent logs show the following error:

 

SSL_get_verify_result = 14
SSL Certificate verification result: unable to get local issuer certificate
Scope FortiNAC, MacOS.
Solution

Though this error refers to a specific OpenSSL error code 14 - 'the certificate notAfter field contains an invalid time' - this may be misleading.

Pay attention to the error code output 'SSL Certificate verification result: unable to get local issuer certificate'.
Ensure that the full cert chain is installed on both the client and the FortiNAC server in the Persistent Agent target. Most importantly, the intermediate root certificate(s), must be installed on FortiNAC if the chain uses any.

Related articles:

Technical Note: Troubleshooting the Persistent Agent

Technical Tip: Persistent Agent MacOS TLS Handshake Issue

Technical Tip: Persistent Agent fails to communicate with 'SSL_get_verify_result' log entry 

Technical Tip: Verify trusted Certificate Authorities on Windows or Mac OSX
555
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.