Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Dibiase79
New Contributor II

Created on ‎11-20-2023 09:56 AM

FortiClient EMS ZTNA certificate issues

I am currently running Forticlient EMS server version 7.0.10.  I have 188 registered clients and we have recently updated the clients from version 7.0.9 to 7.0.10.  One of our users can't to connect to the VPN anymore.  They get connected for about 5 seconds and then disconnected.  One thing I noticed is the computer for this user has a ZTNA Status of Revoked on the EMS server.  I have uninstalled and reinstalled the client multiple times but it still shows the status as revoked.  The logs are showing a  [FortiESNAC 761 error] Could not find the desired certificate error in the logs.  I noticed there isn't an EMS certificate in the personal certificate store on that PC but working computers do have a EMS certificate installed.  I am finding almost no suggestions online for this issue other that deregister the client and re-register in EMS to get a new certificate but it isn't working.

 

revoked.JPG

Labels:
6091
0 Kudos
5 REPLIES 5
peisenberg
Staff
Staff

Created on ‎11-21-2023 01:27 AM

ZTNA cert should not affect VPN connectivity. Did you checked FGT sslvpn logs to see any error ? 

 

TAC
6032
Dibiase79
New Contributor II
In response to peisenberg

Created on ‎11-21-2023 06:41 AM

I did open a ticket with support last Friday and they gathered a bunch off logs but I haven't heard back from them yet.  The only thing I see in the sslvpn log is [sslvpndaemon 652 error] Broken pipe! Client is exited 

6017
WinniePoo
New Contributor
In response to Dibiase79

Created on ‎02-15-2024 01:41 AM

Hello Dibiase79,

 

did you got an awnser?

We got the same problem.
Or could you post the ticket#, please?

Thank you very much.

best regards

5294
0 Kudos
Dibiase79
New Contributor II
In response to WinniePoo

Created on ‎02-15-2024 06:38 AM

I spend hours with fortinet support doing multiple log captures but they never figured out a solution for the issue.  It has gone away with Forticlient version 7.0.11 though.

5278
0 Kudos
adhingra
Staff
Staff

Created on ‎02-21-2024 05:58 PM

I was facing the same issue on my Ubuntu VM. I had to enable TPM on my VM and then it worked.
https://docs.fortinet.com/document/forticlient/7.2.3/linux-release-notes/745986/special-notices

5179
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.