Technical Tip: Recommended basic configuration for...

Matt_B · 12-09-2025

Description This article describes an unsupported configuration that may cause VPN connections to fail after upgrade to FortiOS v7.4.9. Scope FortiOS v7.4.9, v7.6.3 and later. Solution If Azure AD auto-connect is enabled on the FortiClient but not co...

Matt_B · 12-03-2025

Description This article provides the minimum required firmware versions for successful multifactor authentication using FortiClient manual code entry or FortiToken mobile push when connecting to a FortiGate IKEv2 Dialup IPsec gateway. Scope FortiGat...

Matt_B · 12-01-2025

Description This article describes a known issue that can cause ICMP traffic to be dropped after an upgrade when using specific models and configurations. Scope FortiGate with 2GB RAM or less v7.6.0-v7.6.4. Solution This issue occurs for all models l...

Matt_B · 11-14-2025

Description This article demonstrates how to request deletion of an unused FortiCloud Portal account. Scope FortiCloud Portal. Solution A user attempting to login to FortiCloud will be presented with an account selection screen if the user exists und...

Matt_B · 11-09-2025

Description This article clarifies how different EAP methods operate when performing IKEv2 user authentication on FortiOS. Scope FortiOS v7.2 and later, IKEv2. Solution User authentication for an existing IKEv2 tunnel is enabled by applying the follo...

Matt_B · 12-09-2025

If it works for SSL VPN, this suggests FortiClient itself has the required permissions to access the cert. For IPsec, ensure is enabled for the VPN connection profile. It is disabled by default.https://docs.fortinet.com/document/forticlient/7.4.4/xm...

Matt_B · 12-03-2025

Thread is old, but to avoid the use of fnsysctl (which loses permissions to read /etc/upd.dat in later firmware versions), use "diagnose test update info" to retrieve the FortiCare account FortiGate believes it is registered to.diagnose test update i...

Matt_B · 02-13-2025

Sometimes, useful info you can only find in one place is wrong! v7.2.11 was released yesterday and v7.0.17->v7.2.11->v7.4.7 is a supported upgrade path despite breaking the rule of thumb I just gave (v7.2.11 released 2025-02-12, v7.4.7 released 2025-...

Matt_B · 02-12-2025

Thank you, updated as of Q4 2024.

Matt_B · 02-10-2025

It's not because v7.0.17 was new, upgrade from chronologically later (v7.0.17) releases to chronologically earlier (v7.2.10) releases is not supported. That's because those upgrade steps are not QA-tested. Upgrade v7.0.17->v7.2.10 or earlier should b...

User Statistics

User Activity

Technical Tip: IPsec VPN connection fails after upgrade to v7.4.9 if Azure AD auto-connect enabled on FortiClient and disabled on FortiGate

Technical Tip: Required firmware/software versions for using FortiToken Mobile or OTP MFA with FortiGate IKEv2 Dialup IPsec

Technical Tip: After upgrading FortiGate 2GB models to v7.6.4, ICMP traffic in non-root VDOM is dropped

Customer Service Tip: Requesting FortiCloud Portal account deletion

Technical Tip: FortiOS IKEv2 EAP user authentication operation

Re: IPsec IKEv2 VPN with LDAP username/password, computer certificate, and MFA

Re: How to check account via CLI

Re: Stuck at v7.0.17

Re: Technical Tip: FortiCloud account and FortiGate Cloud account transfer from GUI

Re: Stuck at v7.0.17

Technical Tip: Recommended basic configuration for...

Technical Tip: FortiToken Mobile will no longer su...

Technical Tip: Using the same TCP port for IPsec S...

Technical Tip: Certificate Authentication for Fort...

Troubleshooting Tip: Advanced filters for FortiOS ...

Re: Stuck at v7.0.17

Re: Regarding an email received from forticloud: F...

KCS

User Statistics

User Activity

You are leaving our website