I am trialing Fortigate in AWS environment and trying to connect SSL VPN through FortiClient, but it gives error message. It authenticates and complete 2FA process through FortiAuth but at the end it gives error message Token code is wrong. (-7203). Is there any configuration needed on AWS Fortigate side to establish connection via vpn?
Thanks
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
I thinks its issue with licensing or activation issue on token not something related to AWS or config .
You may refer below KB and verify auth config.
Thanks
Madhav
VPN is working from other networks, it just does not work from AWS.
Hi @ArifS
1) Make sure to use RADIUS or other servers where the user password is not expired.
2) If the FortiToken Cloud is used, it is possible to see if the push notification has been enabled or not.
- It is possible to go to support.fortinet.com and top left go to Services -> Cloud Services -> FortiToken Cloud.
- Disable it on FortiToken-Cloud: Settings -> Realm -> FTM Setting -> Disable Push.
- Remove and recreate user
3) Try to connect again and assign FortiToken cloud to the relevant user from FortiGate, it should work.
Regards,
Hi @ArifS
It does not need any extra configuration on the AWS FGT end.
As @vinayHM mentioned you can follow the plan steps for the token.
If still is does not work then please collect the below debug and raise to TAC case.
dia debug reset
dia vpn ssl debug-filter clear
dia vpn ssl debug-filter src-addr4 <public IP > >>>>> test machine public IP
dia debug application sslvpn -1
dia debug application fnbamd -1
dia debug en
Regards
Priyanka
- Have you found a solution? Then give your helper a "Kudos" and mark the solution.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1733 | |
1106 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.