Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
NeerajSofat1
New Contributor

Created on ‎09-11-2024 10:51 PM

Forticlient login page issue

Hi all,

We are facing the Forti-Client authentication login page issue by our all the users.

We are using 800D UTM having v7.4.3 build2573 version.

Error is ERR_CERT_AUTHOURITY_INVALID and we checked on event Viewer log & found error : The Certificate received from the remote server was issued by an untrusted certificate authority. Because of this, none of the data contained in the certificate can be validated. The TLS Connection request has failed.

Attached URL action also not worked:

https://community.fortinet.com/t5/FortiGate/Technical-Tip-GUI-Untrusted-HTTPS-server-certificate/ta-...

 

Help please
Help please
Labels:
957
0 Kudos
7 REPLIES 7
Toshi_Esumi
SuperUser
SuperUser

Created on ‎09-11-2024 11:25 PM

Is this SSL VPN? Do you happen to be using "Fortinet_Factory" default cert for SSL VPN? And, recently upgraded the FGT to v7.4.3, which caused this symptom to start for all users?

 

If all "yes", the default cert might have gotten broken during the last upgrade. Try creating a new one if that's the case and change the cert to that one for SSL VPN.

Toshi

940
NeerajSofat1
New Contributor

Created on ‎09-11-2024 11:29 PM

Hi Toshi_Esumi, thank you for your reply but, -

It is not SSL VPN, it is local login ids are created. We have not upgraded version recently, earlier everything was fine. We are using Fortinet_GUI_Server certificate.

Help please
Help please
934
0 Kudos
Tomviv
New Contributor II

Created on ‎09-27-2024 01:43 AM

Did you manage to resolve this? I have a similar issue in that our Chromebook users no longer get prompted with the fortigate login screen, instead a NET::ERR_CERT_AUTHORITY_INVALID message.

697
NeerajSofat
New Contributor
In response to Tomviv

Created on ‎09-27-2024 02:57 AM

No, we are still facing the same issue.

689
0 Kudos
Tomviv
New Contributor II
In response to NeerajSofat

Created on ‎10-09-2024 09:17 AM

I have had two-hour remote sessions with Fortinet tech support, and I still haven't received a resolution. I will post back here with any updates.

591
0 Kudos
NeerajSofat1
New Contributor

Created on ‎10-09-2024 09:09 PM

Fortinet team recommended my below changes for solution:

 

config user setting

set auth-cert Fortinet_Factory

set auth-ca-cert Fortinet_CA_SSL

set auth-secure-http enable

end

Download the **Fortinet_CA_SSL** certificate and install it on the endpoint under **Trusted Root Certification Authorities**.

Help please
Help please
572
0 Kudos
Tomviv
New Contributor II

Created on ‎10-11-2024 04:44 AM

Did the change fix it for you?

I updated the user settings as per our recommendation but still no authentication prompt on the Chromebooks when accessing the www 

549
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.