Help
FortiPAM
FortiPAM allows you to protect, isolate and secure privileged account credentials, manage and control privileged user access, and monitor and record privileged account activity.
shikhakolekar
Staff
Staff

Created on ‎08-26-2025 01:55 AM Edited on ‎09-02-2025 01:31 AM By Community Manager

Article Id 405005

Technical Tip: High RAM usage and disconnections when using FortiPAM browser extension

Description

 

This article describes the behavior and steps noticed when multiple targets are launched with recording enabled. 

If the browser extension is enabled, WebRDP is launched, launching 3 or more targets with recording, and high RAM usage is observed.

Timeouts, random disconnections are also observed. 

 

Scope

 

FortiPAM.

 

Solution

 

The FortiPAM browser extension is available for Chrome, Edge, and Firefox.

 

Step 1:

Verify if the FortiPAM browser extension is used along with FortiClient.

 

Step 2:

Launch a few targets to see if the process under the task manager shows high CPU usage, as the screenshot below.

 

Note that this shows the extension used is Edge.

 

PAM access.png

 

Note that the extension used is Chrome.

 

FPAM Chrome.png

 

The tab CPU can be expanded to see the details of processes, as shown below.

 

Expandresults.png

 

Step 3:

The common errors seen with this are: 

 

Pattern 1.

 

Secret video uploading timed out.
Start recording secret session.
Secret permission check is done. Start to launch secret.
Secret session started.
Start recording secret session.

Secret video uploading timed out.

 

Pattern 2.

 

wad_pam_token_time_out :1323 PAM token timeout cb,  token=0x7fcc0711fb30, state=upload-video

wad_http_server_close_common 

 

Step 4:

Collect debugs with the below commands to verify this:

 

diagnose debug console timestamp enable

diagnose wad debug enable category auth

diagnose wad debug enable category secret

diagnose wad debug enable category rdp

diagnose wad debug enable category gui-api

diagnose wad debug enable category http

diagnose wad debug enable level verbose

diagnose debug enable <----- Reproduce the issue at this time.

diagnose debug disable <----- To disable the debugs.

 

Step 5:

Check via the extension Firefox, this should consume less CPU, and the random disconnects, recording timeouts should not be seen. Multiple web RDP sessions can be started with video recording enabled.

 

This is a known issue, and a fix for this is in FortiClient v7.4.5.

 

The current workaround is to use Firefox as an extension.


Note:

Always note that when recording is enabled, close the web browser gracefully; If not disconnected gracefully, even then, 'Secret video uploading timed outwill be seen.

Labels:
112
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.