Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Tom99
New Contributor II

Since update to 5.6.3 no admin web gui

Hi,

 

i updated my 100D from 5.6.0 to 5.6.3. Since then, I no longer have access to the Admin web Interface. I always get the message "ERR_CONNECTION_RESET".

Ssh, Ping and SSL VPN web Interface are working normaly.

Admin-port is 81 and admin-sport is 444.

 

regards

Tom

1 Solution
seckin
New Contributor

Hi Tom

i have same problem when i upgrade to firmware 6.04 to 6.05. 

how did you put it back on the Fortigate Standard certificate ?

this is the error 

 

[httpsd 10778 - 1565177299    error] log_error_core[439] -- [Wed Aug  7 11:28:19 2019] [crit] Can't open certificate file /tmp/admin_server.crt, nor /ssl/certs//tmp/admin_server.crt

 

 

 

thanks

View solution in original post

9 REPLIES 9
Tom99
New Contributor II

Update: I tried to find the pid of httpsd with "get system performance top" to restart the service.

But the service is not displayed. So it does not seem to run. Can I start it manually somehow?   Tom
emnoc
Esteemed Contributor III

Did you check the allowaccess for the interface your trying to access it on ?

 

and

 

Are you  100% sure the  trusthost are allowing this access?

 

Ken

 

PCNSE 

NSE 

StrongSwan  

PCNSE NSE StrongSwan
Tom99
New Contributor II

Hi Yes https is allowed for the interface and no trusted hosts are configured. Tom
FortiKoala

You could try changing the SSL admin port

 

e.g. https://[FGTIP]:8765/

 

Clear the Fortinet certificates from the browser and also try a different browser on a different client/PC to access the admin interface

 

I know you have tried these methods, but for your reference here is KB for the most common admin interface issues

http://kb.fortinet.com/kb/microsites/search.do?cmd=displayKC&docType=kc&externalId=FD34688

 

Tom99
New Contributor II

Hi

 

I have already tested another port and other browsers on other PCs. Also PCs where the certificate was not installed yet.

 

Tom

 

Tom99
New Contributor II

Hi

 

The problem is solved. Our previously used Admin certificate was too weak. And the httpsd service had problems with it. We have now put it back on the Fortigate Standard certificate and that works.

 

Tom

seckin
New Contributor

Hi Tom

i have same problem when i upgrade to firmware 6.04 to 6.05. 

how did you put it back on the Fortigate Standard certificate ?

this is the error 

 

[httpsd 10778 - 1565177299    error] log_error_core[439] -- [Wed Aug  7 11:28:19 2019] [crit] Can't open certificate file /tmp/admin_server.crt, nor /ssl/certs//tmp/admin_server.crt

 

 

 

thanks

Tom99
New Contributor II

Hi seckin,

 

in the CLI

 

config system global set admin-server-cert "Fortinet_Factory"

end

 

regards

Tom

seckin
New Contributor

hi Tom

thank you so much. 

 

regards

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors