Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
atravel
New Contributor III

Created on ‎08-15-2023 05:57 AM

Can we default which SSL VPN option is given to clients?

We have two SSL tunnels, one is not quite ready. Can we only present one tunnel to the clients and "hide" the other one for now? 

Labels:
890
0 Kudos
1 Solution
btan
Staff
Staff

Created on ‎08-16-2023 01:00 AM

Hi atravel,

 

The 'Current Connection' will only preselect the tunnel when end user navigate to 'Remote Access' tab in FCT.
We currently do not have an option to hide a tunnel.
Let's say you have Tunnel-A and Tunnel-B. Tunnel-B is not ready.
End users will always be able to see Tunnel-B in the dropdown list.

IMO you can simply delete Tunnel-B in the profile, and add it back when it is ready.

Regards,
Bon

View solution in original post

823
7 REPLIES 7
akanibek
Staff
Staff

Created on ‎08-15-2023 07:10 AM

@atravel , what do you mean under "hiding"? You want users to match to only one tunnel? Or, you want to really hide the tunnel which is not ready to not be configured by some admins?

Asset
879
0 Kudos
atravel
New Contributor III
In response to akanibek

Created on ‎08-15-2023 08:26 AM

I want the end user to not see one of the two tunnels. Either by hiding it or not listing it in the drop down. 

860
0 Kudos
atravel
New Contributor III

Created on ‎08-15-2023 01:53 PM

Would either of these two option do what Im looking for? 

 

Capture.JPG

840
0 Kudos
btan
Staff
Staff

Created on ‎08-16-2023 01:00 AM

Hi atravel,

 

The 'Current Connection' will only preselect the tunnel when end user navigate to 'Remote Access' tab in FCT.
We currently do not have an option to hide a tunnel.
Let's say you have Tunnel-A and Tunnel-B. Tunnel-B is not ready.
End users will always be able to see Tunnel-B in the dropdown list.

IMO you can simply delete Tunnel-B in the profile, and add it back when it is ready.

Regards,
Bon
824
atravel
New Contributor III
In response to btan

Created on ‎08-16-2023 05:37 AM

In which profile? 

813
0 Kudos
atravel
New Contributor III
In response to btan

Created on ‎08-16-2023 06:48 AM

I found it. Thank you. 

800
0 Kudos
amrutwell
New Contributor

Created on ‎08-16-2023 06:02 AM

Ive run into some issues with MFA in my environment. We had tried using email-OTP. On mobile, forticlient prompts for the OTP properly, enter it and you're connected. On the desktop, Forticlient just errors out but the OTP is still received in the users inbox... so the fortigate is holding up its end of the bargain, but forticlient for some reason doesnt know to prompt the user.

https://omegle.onl/ vshare
https://omegle.onl/ vshare
809
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.