Forticlient 7.2.2 MacOS 14 (Sonoma) web filter issue with Firefox

rz5 · ‎10-06-2023

After upgrade Forticlient to 7.2.2, Firefox can't connect to any secure side (google.com, etc), because of:

"Software is Preventing Firefox From Safely Connecting to This Site

www.google.com is most likely a safe site, but a secure connection could not be established. This issue is caused by FortiClient Webfilter Root, which is either software on your computer or your network.

What can you do about it?

www.google.com has a security policy called HTTP Strict Transport Security (HSTS), which means that Firefox can only connect to it securely. You can’t add an exception to visit this site."

Have you experienced this?

GPAEALandon · ‎10-10-2023

We were able to fix this by setting Firefox's "security.enterprise_roots.enabled" to true.

We started a wider rollout, but are running into an issue where endpoints are getting dozens of prompts from FortiClient to make changes to the system keychain.

View solution in original post

akanibek · ‎10-06-2023

Hey @rz5,

how about the previous version. Wasn't any issue with getting access to websites? Have you tried to downgrade and test it in the same macOS 14?

Asset

rz5 · ‎10-06-2023

Hi,

worked before upgrade and after downgrade

Thanks,

Zoltan

akanibek · ‎10-06-2023

Then, it is a case for the TAC support, if you are using licensed version. Otherwise, follow-up the release notes, or support forum for the same issue.

Asset

GPAEALandon · ‎10-10-2023

We were able to fix this by setting Firefox's "security.enterprise_roots.enabled" to true.

We started a wider rollout, but are running into an issue where endpoints are getting dozens of prompts from FortiClient to make changes to the system keychain.

Forticlient 7.2.2 MacOS 14 (Sonoma) web filter issue with Firefox

Nominate a Forum Post for Knowledge Article Creation

You are leaving our website