We have 2 X 100D Hardware Appliances running firmware version 6.0.4 (build 0231 GA) in NAT (Flow-based) Mode (HA: Active-Passive).
They primarily protect our wireless network which is open to use by staff and visiting members of the public. In general we do not do full SSL inspection.
However, I have been testing 'Full SSL Inspection' on a few devices. I have downloaded the Fortinet_CA_SSL certificate from the firewall appliance and installed it on my test platforms (Windows & Android).
On the whole, most things appear to work fine except Google Play Store on the Android device, it just won't connect to Google Play at all. If I revert to default SSL Certificate Inspection everything works fine.
My Web Filter Policy blockes sites categorised as Advertising and Web Analytics. My Application Control Policy also blocks Google.Ads and Google.Analytics. It should be noted that when I allow these applications Google Play still doesn't work with Full SSL Inspection enabled.
My Web Filter, Application Control and Forward Traffic Logs aren't helping much as I cannot see anything being blocked which may help with resolving this issue.
Has anyone else experienced something similar and could point me in the right direction to solving this problem? Any advice would be much appreciated.