Description This article describes how to resolve the captive portal
issues affecting FortiAuthenticator v6.6.3 GA. Scope FortiAuthenticator
v6.6.3 GA. Solution A working captive portal setup in 6.6.2 GA and older
might break with the upgrade to v6.6...
Description This article describes how to fix SAML auth errors like
'AuthnRequest IssueInstant too old' or 'AuthnRequest IssueInstant too
new'. Scope FortiAuthenticator 6.X, 7.X. Solution Time drift or
incorrect time/timezone settings on any of the p...
Description This article describes symptoms and solutions for swap
memory being in use on a FortiAuthenticator. FortiAuthenticators may
have the following symptoms: Admins being unable to log in to the GUI
without a clear reason. Logs or debug failin...
Description This article describes how to fix OAuth authentication
server error 403 and OAuth login failed: invalid_request. Scope
FortiTrust Identity and FortiAuthenticator v6.5, v6.6. Solution When
settings up OAuth for the first time, the authenti...
Description This article describes the FortiAuthenticator radius error,
Ignoring requests,and unknown client,s and how to resolve it. When a new
RADIUS client is configured on FortiAuthenticator, and there is no
response to the access-request, the ra...
hi there, Most likely if you specify only the logon events (instead of
0, 1, 2) you won't have the users logged off anymore.Check what are the
correct IDs for your server OS. 6) Logon Event ID poller. Increase the
level to '2' instead of '0' of visib...
Hi there, I hope I got this right.If the same public IP/FQDN has been
moved from FGT to LB, you still have the same public IP/FQDN in "config
user saml", and LB is correctly configured to fw the saml auth request
to the FGT, then this is expected to ...
Hi there, * close*timeout*client-rst* accept These actions are also part
of normal operation, they don't necessarily indicate an issue.Need to
correlate some more outputs in order to determine if these events are an
issue. Please follow these trouble...
Hi there, Can you link this issue to any change in your environment?Have
you tested other devices/FortiClient versions?Is it possible for an
effected user to use for a while web ssl portal instead of FCT tunnel
mode?That should help to identify if th...
Hi there, It's unclear to me what do you mean by "Does Foticlient
support to dialup IPsec VPN or we have to configure separate Forticlient
configuration at Fortigate Firewall." If ipsec dialup with 2fa is what
you're after, please check the docs bell...
