I have a fleet of managed iPads that are older Air2s running iOS 15.8, and the recent update not only deleted all previous VPN configurations, it also no longer displays the login screen with the new configs. All of my other iPads are able to connect, it's just these older ones that cannot. It appears that it's trying to use SSO, even though that is deselected in the config. When they try to connect, this window appears
But tapping on OK results in this window:
They are never offered the regular login window to enter their username and password.
I have submitted a ticket but have yet to get a response, so thought I'd ask here ot see if anyone else is experiencing the same.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hello Pamela,
Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.
Thanks,
I am just posting so I can keep track of this thread.
Hello Pamela,
We are still looking for someone to help you.
We will come back to you ASAP.
Regards,
Hello @btan, @Anil_Solakoglu,
Do you maybe have an answer for this request?
Thanks a lot in advance.
Regards,
Hi PamelaP,
I personally did not see this issue before.
In affected iPad, in the VPN tab, you can click on 'Edit' at the top right, click again on your VPN tunnel, it should bring you to a new window. In that screen, do you see 'SSO' is still being toggled on?
Other workarounds that may help:
1. Clone the endpoint profile in EMS, and assign the cloned profile to this ipad.
2. Or simply assign this ipad to another profile/policy, let it sync to EMS to get the profile, then switch it back to the intended profile.
3. Deregister and rejoin back to EMS
4. Uninstall and reinstall iOS FCT
have any suggest to resolve this issue?
I confirm that with iphone ios 15.8.3 and vpnclient 7.4.1 , I have the same problem
I opened a support ticket with Fortinet the same day I posted this, and a week later they finally acknowledge that there was a bug.in 7.4.0. They then said they would test and send out a new release that would fix it. Thus, 7.4.1 released last week, but unfortunately, it did not fix this particular issue. The suggestions upstream from btan were all fixes I tried previous to opening the support ticket, and none of them worked - so don't bother with any of those. We have tried to provide feedback on the support ticket (it's still open) but the portal was unavailable this past Friday 9/27/24. We will try again today.
ETA - SSO is not enabled, but it acts as though it is caching credentials (for lack of a better term) regardless. I can't tell where it's picking them up from though, as we use MFA for their AD/Entra accounts, the iPads are enrolled in InTune, and my users do not have AppleID's on this particular set of managed iPads. The credential-caching is what they need to fix.
Hi @PamelaP , thank you for the info.
May I know the Internal Case ID or bugID if this is acknowledged as a bug by your TAC?
Thank you.
Created on 10-02-2024 07:19 AM Edited on 10-02-2024 07:20 AM
Hi Bon,
The ticket number is 9884511. It is under our network manager's name; he is the one that has the account. I'm just dealing with the outfall.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1547 | |
1031 | |
749 | |
443 | |
210 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.