Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
fmco
New Contributor

Created on ‎01-20-2023 02:03 AM

Deploy forticlient VPN with config (No EMS)

Hello,

 

Our company is using an old version of FortiClient (5.6.6.1167). We want to migrate approximately 200 laptops to the latest version (7.0.7.0.345).

 

Actually, the VPN config is set by Windows registry entries. Is it possible to keep the VPN configuration from the windows registry ?

Otherwise, is it possible to deploy the latest version with a conf file ?

 

For your information, we don't have a Forticlient EMS.

 

Thanks for your support !

Labels:
1520
0 Kudos
4 REPLIES 4
Anthony_E
Community Manager
Community Manager

Created on ‎01-22-2023 10:24 PM Edited on ‎01-23-2023 01:41 AM

Hello,

 

 

I have found a document that can help you:

 

https://docs.fortinet.com/document/forticlient/6.0.1/ems-administration-guide/994871/deploying-forti...

 

Could you please tell me if it helped?


Regards,

Anthony-Fortinet Community Team.
812
0 Kudos
MercyV
New Contributor
In response to Anthony_E

Created on ‎03-17-2023 01:38 AM

Good day,

 

I can't seem to access this document

76
0 Kudos
Debbie_FTNT
Staff
Staff

Created on ‎01-23-2023 05:17 AM

Hey fmco,

 

given that you're using a fairly old FortiClient version, I'm not sure if the registry settings can be retained, and deploying a FortiClient installation from scratch with a configuration file requires a modified installation file, which in turn relies on EMS.

However, you can technically just do a regular FortiClient installation, and prepare a config backup (.xml file), and then restore that config file to the installed FortiClient(s).

I'm really not sure if this can be done in bulk though, or if a prepared FortiClient configuration backup would need to be restored individually on each client; any guides we have for bulk deployment/configuration/upgrade of FortiClient usually relies on EMS.

+++ Divide by Cucumber Error. Please Reinstall Universe and Reboot +++
770
AEK
Contributor III

Created on ‎01-23-2023 01:14 PM

Hi

This should be doable this way:

  1. Install FortiClient VPN 7 on a Windows machine
  2. Configure FCT VPN 7 as required
  3. Run regedit and find the registry key for FortiClient (should be somewhere in HKEY_LOCAL_MACHINE\SOFTWARE\Fortinet\FortiClient)
  4. Export the reg key
  5. Use GPO to deploy your new FCT 7 + reg key file on your 200 hosts

 

592
0 Kudos
Labels
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.​

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2023 Fortinet, Inc. All Rights Reserved.