I have the problem that when I use my personal PKI certificate of our domain under a Windows FortiClient VPN I have no problems, but when I want to use this or another certificate created for the Mac, I get a “Permission denied”.
If I use a certificate created with Open SSL, the connection works.
Does anyone here have any idea what needs to be changed in the certificate template in the PKI so that the certificates also work with the FortiClient for Mac, or where the problem lies?
With best regards
Michael
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Did you install the CA certificate on your MacOS (Keychain Access)?
yes, I have installed them
The issue may be other.
Can you export and share logs from FortiClient? (you can remove public IP from output).
And try run debug on FG while you connect.
diagnose debug application sslvpn -1
diagnose debug enable
Hello, thanks for the answer. Yes, I can export the log, but I can't activate the debug mode in the free FortiClient VPN via the settings. Or where would I have to enter the debug parameters from you, or what do you mean by “FG”?
Hi Kauly
The debug commands must be run on the remote VPN server (FortiGate)
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1732 | |
1106 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.