Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
CvB
New Contributor

SSL VPN with Smartcard

Hi,

 

I want to configure a SSL VPN with a Smartcard authentication.

Is this possible?

 

Fortigate Version:     6.4.8 build1914 

FortiClient version:   6.4.6.1658

 

Regards

Chris

 

 

5 REPLIES 5
lol
Staff
Staff

Hello,

 

 

2-factor authentication is possible with Fortinet mobile or hardware tokens.

Refer to https://docs.fortinet.com/document/fortigate/7.0.6/administration-guide/323465/fortitokens for the start.

 

 

Regards

pminarik
Staff
Staff

Client-certificate-based authentication is definitely supported, even when the certificates are stored on a smartcard. I handled a handful of support tickets in the past where customers were using this.

 

With that said, be aware that weird edgecases do exist and can cause compatibility issues, so please make sure to perform some tests of your chosen smartcard + PC + FortiClient + FortiGate before you commit to it.

[ corrections always welcome ]
doncacciatoconsuting

@pminarik - Interesting...Do you have any implementation documentation for this ?

pminarik

There's heaps of documents for client-certificate-based SSL-VPN authentication, in various states of up-to-date-ness. Try this for example - https://docs.fortinet.com/document/fortigate/7.4.4/administration-guide/266506/ssl-vpn-with-certific...

[ corrections always welcome ]
doncacciatoconsuting
New Contributor III

Thanks all, I'm on the right track.

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors