Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Debbie_FTNT
Staff
Staff

Created on ‎08-02-2023 02:29 AM

Article Id 267122

Troubleshooting Tip: SSL VPN credentials are not submitted automatically to bookmarks in SSL VPN web mode

Description

 

This article describes what CLI settings are necessary to allow FortiGate to submit SSLVPN credentials automatically in an SSLVPN bookmark.

 

Scope

 

FortiOS.

 

Solution

 

SSL VPN web mode allows the creation of bookmarks. The bookmarks can point to a variety of servers and applications like RDP or web servers, some of which might require authentication.

To make accessing resources easier, bookmarks can be set up to submit a user's SSL VPN credentials automatically.

However, by default, only the SSL VPN username is submitted automatically, and passwords still need to be re-entered manually.

To prevent this, the following setting is necessary:

 

config vpn ssl setting

set encrypt-and-store-password enable

end

 

This is a per-VDOM setting and affects all bookmarks in that VDOM. The option whether to submit passwords or not is not available on a per-bookmark basis.

 

Related document:

SSL VPN bookmarks - FortiGate Administration Guide.

525
0 Kudos
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.