Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
am experiencing the same error, however the solution provided is not working on the Mac
Getting this too on MacOS 12.6 (Monterey), FortiClient VPN 7.0.7. The FortiGate is a 60-E running firmware 7.0.6. No problems connecting to the same server using VPN Client 6.0.1 on Windows 10.
The main thing that's throwing me off is the "Do not warn invalid certificate" option basically doesn't work for newer Macs. So, the certificate must be valid. I got a LetEncrypt cert, installed that, used a hostname that matched the cert, and now it can connect fine.
One thing to watch out for with the cert is it needs to include the chain. For LetEncrypt/CertBot, this is the 'fullchain.pem' file.
I experienced the same issue on MacOS 13.1, Forticlient VPN 7.0.7, connecting to a FortiGate with invalid certificate. I was able to solve the issue without having to use a valid certificate.
First you need to download the certificate:
openssl s_client -connect {HOSTNAME}:{PORT} </dev/null 2>/dev/null|openssl x509 -outform PEM >mycertfile.pem
Afterwards, import the pem file in your keychain:
security import mycertfile.pem -k ~/Library/Keychains/login.keychain
Then, using keychain access, open the certificate and edit the trust settings:
To troubleshoot this yourself if you have this error, try eliminate the client as the issue by accessing the web portal through a web browser via xxx.xxx.xxx.xxx:yyy/ where x is your IP and y is your port. Updating FortiClient to the newest version resolved the issue.
Regards,
Rachel Gomez
Yes, there seems to be different behavior after upgrading FortiGate VPN client from 7.0.7 to 7.0.8. I get a one-time warning about the certificate, and after that, can connect fine without warning. Oddly, the "Do not Warn Invalid Server Certificate" checkbox always seems to remain unchecked.
Oh well, I guess this is progress.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1666 | |
1077 | |
752 | |
446 | |
220 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.