Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Roy690916
New Contributor II

Created on ‎09-09-2024 07:30 PM Edited on ‎09-09-2024 07:32 PM

FortiClient vpn issue

MY fortigate ssl vpn setting for saml  use port number 443 ,current   iphone fortinet vpn upgrade   to 7.4 happen issue

error message  => " VPN Erroe : unable to get sso port

Is there any solution? 

SSO.jpg

Labels:
1485
0 Kudos
8 REPLIES 8
cravikumar
Staff
Staff

Created on ‎09-09-2024 08:02 PM

What's the FOS version? Run below debugs and attach the output.

 

dia debug reset
dia debug application sslvpn -1
dia debug application samld -1
dia debug enable

 

https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-Companion-for-troubleshooting-SSL-VP...

P R Chaitanya
1467
Roy690916
New Contributor II
In response to cravikumar

Created on ‎09-09-2024 08:37 PM

I enable debug  after , try iphone connect ssl vpn  

log as shown below

 

 

2024-09-10_113342.jpg

1443
0 Kudos
Roy690916
New Contributor II
In response to Roy690916

Created on ‎09-09-2024 08:48 PM

FortiOS version : 6.4.15

1435
itcn-drift
New Contributor

Created on ‎09-12-2024 03:34 AM

It seems like the upgrade to version 7.4 on iPhone has caused an issue with SSL VPN settings, particularly with SAML authentication using port 443.

Error message:
"VPN Error: unable to get SSO port"

Solution:

The error occurs due to a configuration issue when the client is upgraded. The config on the device needs to be updated manually.

  • The port number in the Server Address field should be placed after the hostname (e.g., vpn.domain.com) and not after the realms name.

Alternatively, you can simply remove the existing configuration and add it again.

1251
0 Kudos
Roy690916
New Contributor II
In response to itcn-drift

Created on ‎09-12-2024 06:18 PM

thank replay~

I try remove configurate , but is not working

 

2024-09-13_091753.jpg

 

1170
0 Kudos
Deek
New Contributor

Created on ‎09-17-2024 06:32 AM

We're seeing the exact same issue.   Fortios 6.4    app immediately throws the Unable to get sso port.   seems like it isn't even reaching out to try and connect...   creating new connection,  or editing  all results in the same issue...   anybody have any  insights?

1011
0 Kudos
AidanL81
New Contributor
In response to Deek

Created on ‎10-02-2024 07:39 PM

We've found the same issue with firewalls running FortiOS 6.4

I'm assuming it is a compatibility issue between 6.4.x and Forticlient 7.4

682
0 Kudos
DavidLAF
New Contributor

Created on ‎10-13-2024 09:48 AM

I was facing exactly the same issue. Tried to uninstall, reinstall and reconf the App.

I tried different configurations and found the right one:

https://mycompagnyurl.com:443/mycompanyname

same 443 in to Port field.

 

 

414
0 Kudos
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.