I've been having difficulty installing FortiClient via EMS on Windows clients. I realized that a problem could be the Windows smartscreen.
Through EMS it is possible to import an ssl certificate to be able to sign FortiClient packages.
Through this procedure I created the certificate template, issued it and imported it on EMS:
Create a code signing cert for Windows Defender Application Control
I then tried installing the package on a client but the smartscreen continues to prevent the installation from starting until you hit run anyway.
The certificate chain is present on all Servers/Clients.
Could the problem be too narrow smart screen settings?
thanks in advance for your sharing.