- Forums
- Knowledge Base
- Customer Service
- FortiGate
- FortiClient
- FortiAP
- FortiAnalyzer
- FortiADC
- FortiAuthenticator
- FortiBridge
- FortiCache
- FortiCarrier
- FortiCASB
- FortiConnect
- FortiConverter
- FortiCNP
- FortiDAST
- FortiDDoS
- FortiDB
- FortiDNS
- FortiDeceptor
- FortiDevSec
- FortiDirector
- FortiEDR
- FortiExtender
- FortiGate Cloud
- FortiGuard
- FortiHypervisor
- FortiInsight
- FortiIsolator
- FortiMail
- FortiManager
- FortiMonitor
- FortiNAC
- FortiNAC-F
- FortiNDR (on-premise)
- FortiNDRCloud
- FortiPAM
- FortiPortal
- FortiProxy
- FortiRecon
- FortiRecorder
- FortiSandbox
- FortiSASE
- FortiScan
- FortiSIEM
- FortiSOAR
- FortiSwitch
- FortiTester
- FortiToken
- FortiVoice
- FortiWAN
- FortiWeb
- FortiWebCloud
- Wireless Controller
- RMA Information and Announcements
- FortiCloud Products
- ZTNA
- 4D Documents
- Customer Service
- Community Groups
- Blogs
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
- Fortinet Community
- Forums
- Support Forum
- Re: Forticlient keeps asking for Smart Card
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Forticlient keeps asking for Smart Card
I'm using the latest and greatest Forticlient (ver 5.2.2.0624) and I also have installed certificates from a Smart Card I use for other business. However, when I open the the Forticlient and try and use the SSL-VPN, I'll immediately get a prompt to install the smart card. I've verified that "Client Certificate" is NOT checked on the connection settings yet it continues to want and check the client certificates from the Smart Card. Need to find a way to get the Forticlient to NOT check for them without effecting the installed Smart Card certificates.
Solved! Go to Solution.
2 Solutions
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi everyone,
this issue is planned to be resolved in FortiClient 5.2.4
Best Regards,
Pavel
livo
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
This works solution works.
+ Export the FortiClient XML configuration file:
- in FortiClient GUI, select the File -> Settings menu item
- click the Backup button
- provide a file name and directory location
+ Edit the exported configuration file. Add the XML element:
<show_auth_cert_only> in the <vpn> section. Set the value to 1.
Please see pages 33 and 36 of the document:
FortiClient XML Reference
http://docs.fortinet.com/uploaded/files/2076/forticlient-xml-52.pdf
+ Import the modified configuration file back into FortiClient,
using the Restore button in the File -> Settings page.
- « Previous
-
- 1
- 2
- Next »
14 REPLIES 14
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Thanks Pavel,
That's good news.
Do you know when this new version will be released?
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
This works solution works.
+ Export the FortiClient XML configuration file:
- in FortiClient GUI, select the File -> Settings menu item
- click the Backup button
- provide a file name and directory location
+ Edit the exported configuration file. Add the XML element:
<show_auth_cert_only> in the <vpn> section. Set the value to 1.
Please see pages 33 and 36 of the document:
FortiClient XML Reference
http://docs.fortinet.com/uploaded/files/2076/forticlient-xml-52.pdf
+ Import the modified configuration file back into FortiClient,
using the Restore button in the File -> Settings page.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Thanks for the workaround. I've tried uploading the edited XML file into the program via CLI, because I cannot open the program normally (since i'm getting the silly Smart Card error). But for some reason, while trying to run the FortiClient.exe into the command prompt i'm getting Acces Denied. (yes i'm using Admin user).
Any ideas? Thanks a lot!
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi Pavel,
When will FortiClient 5.2.4 been released?
I've tried the workaround, but I still have the same annoying Smart Card messages.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hey there,
I totally get how frustrating that can be. It sounds like Forticlient is being pretty stubborn about wanting that Smart Card. I’ve had a similar issue before, and here’s what worked for me:
1. Check the Certificate Store: Sometimes, Forticlient pulls certificates from the Windows certificate store. Even if “Client Certificate” isn’t checked in the settings, it might still be detecting the certificates from your Smart Card. You could try temporarily removing the Smart Card certificates from the store to see if that stops the prompt.
2. Registry Tweak: There’s a registry setting that might help. Open `regedit` and navigate to `HKEY_LOCAL_MACHINE\SOFTWARE\Fortinet\FortiClient\FA_FCSSLVPN`. Look for a key named `CheckClientCert`, and make sure its value is set to `0`. If it’s not there, you can create it as a DWORD value and set it to `0`.
3. Reinstall Forticlient: Sometimes a clean reinstall can clear up weird settings or glitches. Uninstall Forticlient, restart your machine, and then install it again. Make sure you’re using the latest version when you do this.
4. Contact Support: If none of these steps work, it might be worth reaching out to Fortinet support. They’re usually pretty responsive and might have a solution specific to the version you’re using.
Hope one of these helps! Good luck!
- « Previous
-
- 1
- 2
- Next »
Related Posts
Labels
-
FortiGate
6,924 -
FortiClient
1,365 -
5.2
801 -
5.4
639 -
FortiManager
598 -
FortiAnalyzer
438 -
6.0
416 -
5.6
362 -
FortiAP
361 -
FortiSwitch
357 -
FortiClient EMS
280 -
FortiMail
269 -
6.2
251 -
FortiAuthenticator v5.5
234 -
5.0
196 -
FortiWeb
168 -
6.4
128 -
FortiNAC
122 -
FortiGuard
111 -
IPsec
97 -
FortiGateCloud
91 -
FortiSIEM
91 -
SSL-VPN
85 -
FortiCloud Products
85 -
FortiToken
75 -
Customer Service
70 -
4.0MR3
64 -
Wireless Controller
63 -
FortiProxy
48 -
FortiADC
45 -
FortiEDR
42 -
SD-WAN
41 -
Fortivoice
41 -
FortiDNS
37 -
FortiExtender
35 -
FortiGate v5.4
35 -
FortiSandbox
33 -
FortiSwitch v6.4
32 -
Firewall policy
31 -
VLAN
27 -
High Availability
27 -
FortiAuthenticator
26 -
FortiConnect
24 -
FortiWAN
23 -
ZTNA
21 -
FortiConverter
21 -
FortiGate v5.2
19 -
DNS
19 -
FortiPortal
18 -
FortiSwitch v6.2
17 -
SAML
17 -
LDAP
17 -
Certificate
17 -
BGP
16 -
VDOM
16 -
FortiMonitor
14 -
Interface
14 -
Logging
14 -
Authentication
13 -
FortiGate v5.0
13 -
FortiLink
13 -
Routing
13 -
FortiDDoS
13 -
FortiCASB
12 -
NAT
11 -
RADIUS
10 -
SSL SSH inspection
10 -
Traffic shaping
10 -
Virtual IP
10 -
SSO
10 -
FortiRecorder
10 -
FortiWeb v5.0
9 -
FortiManager v5.0
9 -
Fortigate Cloud
9 -
4.0MR2
9 -
SSID
8 -
FortiBridge
8 -
WAN optimization
8 -
Application control
8 -
FortiGate v4.0 MR3
8 -
IP address management - IPAM
8 -
RMA Information and Announcements
7 -
FortiSOAR
7 -
FortiAnalyzer v5.0
7 -
SNMP
7 -
Web profile
7 -
Admin
7 -
4.0
7 -
Security profile
6 -
Traffic shaping policy
6 -
Web application firewall profile
6 -
Proxy policy
5 -
Packet capture
5 -
FortiAP profile
5 -
FortiManager v4.0
5 -
Static route
5 -
FortiDirector
4 -
IPS signature
4 -
Antivirus profile
4 -
Automation
4 -
DNS Filter
4 -
FortiTester
4 -
FortiCarrier
4 -
FortiCache
4 -
OSPF
4 -
3.6
4 -
FortiScan
4 -
trunk
4 -
Port policy
4 -
FortiDeceptor
3 -
Fortinet Engage Partner Program
3 -
FortiToken Cloud
3 -
Traffic shaping profile
3 -
FortiPAM
3 -
DoS policy
3 -
Email filter profile
3 -
Web rating
3 -
Intrusion prevention
3 -
FortiDB
3 -
System settings
2 -
FortiInsight
2 -
NAC policy
2 -
Users
2 -
VoIP profile
2 -
FortiAI
2 -
FortiHypervisor
2 -
Fabric connector
2 -
Netflow
2 -
Multicast routing
2 -
Protocol option
2 -
4.0MR1
1 -
TACACS
1 -
Replacement messages
1 -
Subscription Renewal Policy
1 -
Schedule
1 -
FortiCWP
1 -
FortiNDR
1 -
SDN connector
1 -
Application signature
1 -
Authentication rule and scheme
1 -
FortiManager-VM
1 -
Internet Service Database
1 -
Explicit proxy
1 -
Zone
1
Top Kudoed Authors
| User | Count |
|---|---|
| 986 | |
| 821 | |
| 457 | |
| 440 | |
| 131 |
Broad. Integrated. Automated.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Security Research
Company
News & Articles
Copyright 2024 Fortinet, Inc. All Rights Reserved.