Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
systemgeek
Contributor

Created on ‎04-15-2025 01:07 PM

ZTNA using SSL VPN

I know Fortinet is doing away with SSL VPN.  I am close to moving off SSL VPN and going to Dialup IPSec VPN.  However, its taking a while due to issues I am working with support on.  At the same time I am trying to get my head around ZTNA and from what I have been reading ZTNA uses SSL VPN too but in a more secure way.

 

Please tell me that ZTNA using SSL VPN is NOT going to be going away any time soon????  I am looking to use ZTNA so users can access internal websites on port 443, SSH to hosts, RDP to hosts.  I know there are different methods for each of these.  I just want to make I am not wasting my time by setting this up with ZTNA.

Labels:
182
0 Kudos
1 Solution
atakannatak
Contributor

Created on ‎04-16-2025 12:44 AM

Hi @systemgeek ,

 

Fortinet is not planning to drop ZTNA support from FortiOS based on the Fortinet’s roadmap and recent releases (7.2, 7.4, 7.6) have added more ZTNA capabilities, not reduced them. In fact, ZTNA is one of the core strategic feature they are actively investing in. If anything changes (e.g. ZTNA moving to a separate license SKU), it would likely affect licensing or architecture, not the existence of ZTNA itself.

 

So basically you’re safe investing in ZTNA policies — it's not a dead-end.

 

BR.

 

If my answer provided a solution for you, please mark the reply as solved it so that others can get it easily while searching for similar scenarios.

 

CCIE #68781

Atakan Atak

View solution in original post

Atakan Atak
141
2 REPLIES 2
atakannatak
Contributor

Created on ‎04-16-2025 12:44 AM

Hi @systemgeek ,

 

Fortinet is not planning to drop ZTNA support from FortiOS based on the Fortinet’s roadmap and recent releases (7.2, 7.4, 7.6) have added more ZTNA capabilities, not reduced them. In fact, ZTNA is one of the core strategic feature they are actively investing in. If anything changes (e.g. ZTNA moving to a separate license SKU), it would likely affect licensing or architecture, not the existence of ZTNA itself.

 

So basically you’re safe investing in ZTNA policies — it's not a dead-end.

 

BR.

 

If my answer provided a solution for you, please mark the reply as solved it so that others can get it easily while searching for similar scenarios.

 

CCIE #68781

Atakan Atak
Atakan Atak
142
systemgeek
Contributor
In response to atakannatak

Created on ‎04-16-2025 04:42 AM

Thank you.  So if I cannot get Dialup IPsec working very soon I will pivot to ZTNA even in a basic form sooner then latter.

113
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.