Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
msingh_FTNT
Staff
Staff

Created on ‎04-07-2021 10:36 PM Edited on ‎06-06-2022 12:44 PM By Anonymous

Article Id 197636

Technical Tip: FortiAPs not coming online after upgrading to FortiOS 7.0

Description
The 3DES and SHA1 ciphers have been removed from the strong cipher list in FortiOS v7.0.0.
This is preventing some FortiAP and older FortiAP images using weaker ciphers from connecting to the FortiGate.

This article describes how to fix this issue.

 

Scope
FortiGate


Solution
To workaround this issue, it is required to enter the following commands on the FortiGate:

 

# config system global
    set ssl-static-key-ciphers enable
    set strong-crypto disable
end

 

Note.
Once the configuration change has been made it is required to restart the acd demon.

 

# execute wireless-controller restart-acd

 

Labels:
10644
0 Kudos
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.