Some FortiSASE users might not be able to log in to the VPN due to Permission issues.

The sample VPN event logs are below:

date=2025-02-25 time=12:13:13 id=7475328701094166528 itime="2025-02-25 12:13:13" euid=1068 epid=104 dsteuid=3 dstepid=3 logver=702086525 logid=0101039426 type="event" subtype="vpn" level="alert" action="ssl-login-fail" msg="SSL user failed to logged in" logdesc="SSL VPN login fail" user="xxxx@finaksglobal.com" remip=106.51.88.228 group="N/A" tunnelid=0 tunneltype="ssl-web" dst_host="N/A" reason="sslvpn_login_permission_denied" eventtime=1740485593354788114 tz="+0000" devid="FGVMPxxxxxxx44" vd="root" dtime="2025-02-25 12:13:13" itime_t=1740485593 devname="Bangalore_India"

The VPN login for such users will appear to loop between 0% and 48%.

One of the main reasons for this issue is the account not being activated or activation not being completed successfully.

Have those users activate their accounts. Refer to this KB article: Troubleshooting Tip: Unable to activate account.

If the issue persists, submit a support ticket to the TAC Team from this article: Technical Tip: How to create a ticket for Fortinet TAC for further assistance.