Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Chi
New Contributor

Created on ‎02-06-2023 08:58 AM

FortiSSLVPN.exe is crashing unexpectedly when in lock-screen

Hi,

 

I'm using the fortisslvpn CLI application in conjunction with Self Service Password Reset (SSPR) application. 

 

On the lock screen a user would click on the SSPR app and it runs a CLI command to open fortisslvpn.exe to connect and disconnect the VPN.

 

However, it fails with a Event ID 1000  

FortiSSLVPNclient.exe 7.0.7.345
ucrtbase.dll
10.0.19041.789
C:\Program Files\Fortinet\FortiClient\FortiSSLVPNclient.exe
C:\WINDOWS\System32\ucrtbase.dll

 

Does anyone have experience of this issue?

Labels:
675
0 Kudos
5 REPLIES 5
Anthony_E
Community Manager
Community Manager

Created on ‎02-08-2023 09:56 PM

Hello Chi,


Thank you for using the Community Forum.

I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.


Thanks,

Anthony-Fortinet Community Team.
642
0 Kudos
srajeswaran
Staff
Staff

Created on ‎02-08-2023 10:49 PM

Does it work when you connect/disconnect VPN directly from CLI?  Is the issue happen only with SSSR application?

Was this working earlier?

 

Can you also share the complete error / screenshot of the error.

 

Ref: https://community.fortinet.com/t5/FortiClient/Technical-Tip-How-to-use-FortiClient-SSL-VPN-from-the-...

 

Regards,

Suraj

- Have you found a solution? Then give your helper a "Kudos" and mark the solution.

637
0 Kudos
Chi
New Contributor

Created on ‎02-09-2023 06:38 AM

Hi, Thanks for replying.

 

the application works when the command is run when the user has logged into the desktop absolutely fine. 

 

the SSPR application is the only application we use and it has never worked from the lock screen.

 

I've seen the article you have posted and the command line I use works.

Chi_1-1675953477462.png

 

 

 

619
0 Kudos
srajeswaran
Staff
Staff

Created on ‎02-12-2023 11:31 PM

I haven't used this application, could you please share some more details.

 

When the user click on connect (or the corresponding button), the crash occurs immediately? Or it shows some progress/transactions and then crash?

 

Can you collect a pcap as below to understand if the crash is happening due to negotiation failure or not?

1. enable wire shark on the machine , start capturing the traffic towards VPN gateway

2. Lock the machine

3. Try to connect to VPN

4. Once crash happens, login to machine and check if there are any VPN transactions/negotiations?

 

 

Regards,

Suraj

- Have you found a solution? Then give your helper a "Kudos" and mark the solution.

596
0 Kudos
Chi
New Contributor
In response to srajeswaran

Created on ‎02-13-2023 05:41 AM

So the SSP software is an agent on each computer. 

 

on the lockscreen you click on the application and it brings up a dialog box to manage your credentials. Once the user is authenticated it will attempt to connect the VPN using a command line. The command line basically starts up SSLVPNClient which temporarily connects the VPN (with a service account) and then disconnect once the local credential has been synced. 

 

The dialog box shows a green progress bar and during the operation it will stop halfway and this is where I assume it stops and doesn't complete it. 

 

I'll try to capture the information but it seems that even before the application tries to start the connection is falls over trying to start SSLVPN to begin with.

589
0 Kudos
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.​

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2023 Fortinet, Inc. All Rights Reserved.