Installed new version of Forticlient (vers 7.2.4.0972).
we setup up Azure SSO on fortigate v7.
when running connect on client .. getting pop up "Script Error"
(review screenshot)
(error has occurred in the script on this page).
Error: Access denied.
code: 0
URL: about blank
I have uninstalled and reinstalled application, on 2 different devices and same issue.
Can anyone assist?
Anthony Abela
Please ensure that your SAML attributes are configured correctly on both Fortigate (SP) and on Azure (IDP) as they are very easy to misconfigure. To me, that looks like a potential issue during the saml redirection, not an issue with FortiClient.
You may find this useful: https://community.fortinet.com/t5/FortiGate/Troubleshooting-Tip-Companion-for-troubleshooting-SSL-VP...
Fortigate Azure sso configuration: https://docs.fortinet.com/document/fortigate-public-cloud/7.4.0/azure-administration-guide/584456/co...
https://learn.microsoft.com/en-us/entra/identity/saas-apps/fortigate-ssl-vpn-tutorial
To get a better grasp of the issue at hand, please run these debugs:
# diag vpn ssl debug-filter src-addr4 x.x.x.x ==> x.x.x.x should be the public ip of the client devicethat is connecting: whatismyip.com
# diagnose debug application sslvpn -1
# diag deb app samld -1
# diag deb enable
-> Reproduce issue
To disable the debug:
# diag deb disable
# diag deb reset
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.