Hello ! I found something that worked for me !
Since yesterday I was stuck at 98% and I've tried everything (even reinstall Win10). And the "problem" found was my Internet connection !! I found myself really dumb after that !!! I need to log VPN forticlient and for that I was using my mobile phone hotspot.... It worked after I disable IPv6 to use IPv4 only !!!
To disable IPv6 on Android device to use IPv4 only.
Step 1 : Go to your Android device System Settings and tap on “Network & Internet”
Step 2 : Tap on “Mobile network”
Step 3 : Tap on “Advanced”
Step 4 : Tap on “Access Point Names”
Step 5 : Tap on the APN you are currently using
Step 6 : “APN Protocol”
Step 7 : Tap on “IPv4”
Save the changes
We have 2 brand new 2601Fs HAs in different datacenters. we are still using the free client 6.0.9. we were upgrading everything to 6.4.10 previously at 6.2.7. we noticed an anomaly with the 6.4.10 FW so we left the second datacenter at 6.2.7 to do some comparisons while testing on the 6.4.10 FW. What I can confirm is if your client is configured to 'Prefer DTLS Enabled', it will hand at 98% for 10 seconds then go back to the login prompt. The FAC records show you logged in successfully (With FTM push). But definitely not connected on the local PC! This did not happen to any of our previous FOS versions. Fortunately that setting wasn't in the final build that went out to 20,000 users, as I am the one that builds and tests the FortiClient, but I had that setting on mine for years. The two 2601s in each datacenter are built identical except for the FOS version. the 2601 that is still at 6.2.7 does not have that issue. Just curious if you have that option turned off in the FortiClient settings? (our images for our Windows 10 agents only have allow TLS1.2 and TLS1.3 *Experimental* enabled in IE).
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.