- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Fortimanager VM connect fortigate error
Good afternoon!
Friends, I'm using two images in EVE-NG, one from fortigate v7.0.15 and the other from fortimanager v7.6.0 build3340 (Feature).
I connected to both with the forticloud trial.
I configured a management interface on both and another Lan interface (where I would connect between them)
They both ping each other and fortigate closes telnet on port 541.
I activated FMG-Access on the lan port on the fortigate where I will communicate with the fortimanager.
I reduced encryption in fortimanager, set low and also activated fgfm-ssl-protocol sslv3.
I put the Fortimanager IP in the fabric connector > Fortimanager, on premises.
I always get this error:
The FortiManager's access to the FortiGate will be authenticated by the FortiManager certificate. The serial number from the certificate must match the serial number observed on the FortiManager. Could not connect to the FortiManager to retrieve its serial number.
I tried everything possible, I have no more ideas. Please Help .
- Labels:
-
FortiGate
-
FortiManager
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Why 7.0?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Because I read about this version having fewer limitations as it is a trial. :,( . But I tried with newer versions too. I had the same result.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello ,
Please check the compatibility tool between Fortigate and Fortimanager . They seems to be non-compatible version. Kindly try to make the version compatible to each other and see that helps.
Please use the link to check the compatibility between fortigate and fortimanager .
https://docs.fortinet.com/compatibility-tool/fortimanager
Thank You
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
You right! But i already test compatible versions. But i find the solution now. Need to run this on Fortimanager: config sys global
set fgfm-peercert-withoutsn enable
Thanks all.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Ok after not using the custom security profiles defined at global scope and using those in a VDOM and just using legacy authentication I'm now able to connect to my Gate from LAN side https://vshare.onl/ . Thanks!!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello Rafaelkkksalgado,
The article below explains further regarding the error and the solution in this case:
Regards,