Fortigate-VM Evaluation copy. Can't test SSL VPN Client setup

Kiwi · ‎02-03-2020

Hello

I installed FortiGate-VM v 6.2 and 5.6.9 (Both Evaluation Copies) on VMware Workstation.

As instructed in multiple tutorial videos (Cookbook and Youtube), I configured SSL VPN on them to test client access.

Problem-1: When trying to test the SSL VPN functionality https://<external_IP>:10433 is fails with error like SSL_ERROR_NO_CYPHER_OVERLAP (Firefox) or similar error message about SSL version mismatch when using other browsers.

- I know, evaluation copies have some limitation, like Low encryption only (no HTTPS administrative access)

- Some threads talk about using old Web browsers for TLS version to overcome the problem.

I tried to enable TLS 1.0 ans SSL 2.0 in IExplorer ver 7 that come with Windows XP, it did not help!

[style="background-color: #ffff99;"]Question:[/style] Any idea, whether it's possible or not at all to test SSL VPN Client with evaluation copies ?

Problem-2: After installing an Offline version of FortiClient VPN it keeps asking for Certificate.

I am not a customer and I do not have Certificates for that, just home Lab. How to bypass this issue for testing purposes ?

Thank you

Kiwi · ‎02-03-2020

Hi Toshi,

About Evaluation copy:

1. Cisco firewall can be Full fledged evaluated for 60 days without being a customer, same with HP

2. See Fortigate Evaluation copy limitation under this link: https://docs.fortinet.com/vm/vmware-nsx-t/fortigate/6.0/about-fortigate-for-vmware-nsx-t/6.0.4/99217...

You can't do much with Fortinet evaluation unfortunately, Only One VDOM root in addition to https and VPN limitation apparently.

No support for Evaluation, that's normal.