I've installed FortiClient VPN only version and gave it full-disk and VPN permissions (to both: FortiClient.app and fctservctl2).
But when I try to connect to a VPN, it shows me an error: "To connect to a VPN with FortiClient, open Security & Privacy Settings and allow system software from FortiTray.". I've wanted to try to add FortiTray.app to the whitelist as well, but I cannot do it since it's located inside the FortiClient.app package.
How do I fix this?
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
I found the solution :)
go to setting - general - login item & extentions.
scroll down to extentions and click on "i" infront of network extention and allow the fotiTray.app
Hello @Anthony_E ,
Normally, this screen is given as below in the document. However, this screenshot and instructions are valid for old macOS versions.
https://docs.fortinet.com/document/forticlient/7.4.0/macos-release-notes/223986/special-notices
In new MacOS versions, this screen seems to have been moved to the area mentioned by @Dulasalem . It seems that adding the screenshot and path mentioned by @Dulasalem in the document will be sufficient.
This worked to me, thanks !
Created on 11-05-2024 05:02 AM Edited on 11-05-2024 05:04 AM By Anthony_E
Hello, for my part, the fortiTray.app is authorized but no change. The VPN is still blocked since the latest update version 7.2.5.0916 / MacOs Sequoia 15.1 update ok.
Are there other solutions? “Message notification: Forticlient VPN has been configured to block current zero trust tags” Thank you in advance for your help.
Hello!
I am bumping into the exact same problem.
No mention of Fortitray anywhere under my Privacy and Security window and no place where I might be able to allow it.
I have spent half day trying to install various older versions of the clients but same problem appears for full and free VPN client.
https://pasteboard.co/aQMHOlKvTKIS.png
https://pasteboard.co/YAWgDBQgYzIn.png
Best Regards,
Erkki S.
Hello!
I found the cause of the problem and a working solution!
We are using MDM and it preapproves the TeamID-s.
Check if vpn extensions are allowed with
systemextensionsctl list
If the teamID is not explicitly allowed from MDM with allowed extension profile then it is silently forbidden.
Ask your MDM admin create new allowed extension profile with following team-id and roll it out for your Mac:
AH4XFXJ7DK
Regards,
Erkki Saaremets
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1634 | |
1063 | |
751 | |
443 | |
210 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.