Problems with SSL-VPN Certificate

MarkusMueller · ‎07-01-2024

some Clients gets an Certifcate Error (they use Forticlient Version 7.4.0)

we used a working "wildcard" certificate but if i connect with the Forticlient i got an "CERT_COMMON_NAME_INVALID" Error
(we use SAML authentication)

in the error message i see the IP Adresse instead of the DNS Name.

i can make an exception but the Client won't connect to the Fortigate.

for me it looks like a Client Problem becuase most of the user don't have this Problem, these probably use older Fortitclient versions.

AEK · ‎07-01-2024

Hi Markus

On the client, in the VPN connection parameters, do you specify the gateway as IP or as FQDN?

AEK

MarkusMueller · ‎07-01-2024

Hi,

of course i use FQDN on the Parameters.

also i can confirm with the older 7.2.4 the Problem is gone.
so its a Problem with the 7.4.0 Client.

AEK · ‎07-01-2024

You should stay at 7.2.4 for the moment.

AEK

Sheikh · ‎07-01-2024

Hello @MarkusMueller ,

I would suggest opening a TAC case for further assistance. You would be asked to upload FCT 7.4.0 logs.

regards,

Sheikh

**If you come across a resolution, kindly show your appreciation by liking and accepting it, ensuring its accessibility for others**

Problems with SSL-VPN Certificate

Nominate a Forum Post for Knowledge Article Creation

You are leaving our website