####################
PLEASE NOTE - The instructions below were developed for FortiClient 1.2 MR2. As of FortiClient 1.2 MR3, the FortiClient Release Notes contain the best information for creating a custom unattended installation. Please use that as your guide. You can find the release notes at http://kc.forticare.com/. The information below is obsolete.
####################
The following series of post will show you how you can put together a custom unattended setup of the FortiClient VPN software.
Goals:[ul]Unattended Install
Deselection of unnecessary components (the Firewall and Anti-Virus components in this case)
Include FortiClient license key
Include VPN tunnel information[/ul]
For this task you will need the following:[ul] FortiClientSetup_1.2.172.zip or the latest FortiClient from the support website.
MaSaI Editor from http://www.masaieditor.com (thanks UKWizard 
)[/ul]
* Note: If all you want is an unattended installation with the Firewall and Anti-Virus components deselected, you can download a pre-edited 1033.mst file attached to this post.
** Note: These instructions were developed using FortiClient 1.2 build 172 and MaSaI Editor 1.8.1654.0. The instructions may not work if any other versions are used.
Ok, let' s get started!
When unzipping the client, you may have noticed that it contains 3 files.
)[/ul]
* Note: If all you want is an unattended installation with the Firewall and Anti-Virus components deselected, you can download a pre-edited 1033.mst file attached to this post.
** Note: These instructions were developed using FortiClient 1.2 build 172 and MaSaI Editor 1.8.1654.0. The instructions may not work if any other versions are used.
Ok, let' s get started!
When unzipping the client, you may have noticed that it contains 3 files.
12/15/2004 03:35 PM 3,584 1033.mst
12/15/2004 03:35 PM 34,304 2052.mst
12/15/2004 03:35 PM 12,220,928 FortiClient.msi
3 File(s) 12,258,816 bytes
Briefly, the FortiClient.msi file is the main installation file. The other two .mst files are language oriented transform files. Region code 1033 is English. Region code 2052 is Simplified Chinese. For purposes of this HowTo, we will only be using the 1033.mst file. The file 2052.mst can be deleted or ignored.
After you have downloaded and installed the MaSaI Editor, you may notice that it starts in " Trial" mode. The editor gives you full functionality for 20 days before it turns into the " Free" edition. The downside of this period of full functionality is that it adds a pop-up window during the install of each saved project stating that the project was edited and saved using the trial MaSaI Editor. The Free version gives very limited functionality, but does not add the annoying prompt into your projects. Since we only need the limited functionality provided by the Free version for this project (and we do not want the annoying pop-up window displayed to our easily confused users), we will abort the trial period and convert the Editor into the Free version.
STEP 1 - Aborting the MaSaI Editor Trial Period
Open the MaSaI Editor. On the title bar, it will state " MaSaI Editor Trial" . Go to Help then Enter Update Serial Number..., and enter anything you wish. After clicking Ok, the program will report that the serial number is invalid. Simply click Ok to dismiss the error message and you should notice that the window title bar has changed to just " MaSaI Editor" . You are now working in the limited Free mode. If this doesn' t work for you, try closing the editor and re-opening it again.
bad timing really, as they have just released a newer client which explains how to do unattended installs now anyway.
including importing policys
including importing policys
ORIGINAL: harvoo It is great you placed the " how to" in the forum. But the way Fortinet use this way to install Forti Client for a roll out you still need more knowledge about how to use the msi file and need to know the table etc. How is you feeling about this, I was more thinking of some kind of package tool which is more userfriendly.There are two methods you can use. First, you can pay for the MaSaI Editor which will allow you to repackage the MSI file with your changes included. Second, you can zip the MSI file and your transform (MST) file in an self-extracting executable which also allows you to execute a command (your install command syntax) after extraction. Another way is mentioned in the knowledgebase (http://kc.forticare.com/default.asp?id=790). This would be the best way to do it, but I have not been able to get this to work. Perhaps it only works with FortiClientSetup_1.2.066.exe mentioned in the document.
Another question: If we make the changes in the registery different from default how is the fortiClient uninstall reacting on this. Does it know of the changes? Or are we getting in troubles when we need to install a new version of FortiClient?Yes, either method above, the Windows Installer will record that you used a special MST or MSI file to install. You' ll likely have to uninstall the FortiClient first, before installing a newer version. The way that is mentioned in the knowledgebase would be upgradeable, but as I said above, I was never able to record an install in the way mentioned. At least that' s been my experience so far. But uninstalling and reinstalling is still easier for me than going through the pain of walking my remote users through a custom install. Hope that helps.
BTW... I just confirmed that FortiClientSetup_1.2.204.exe /r does not work in the way mentioned in the knowledgebase. Disappointing really... 
