Hot!Forticlient SSLVPN Prelogon issue

Author
ben.browning
New Member
  • Total Posts : 1
  • Scores: 0
  • Reward points: 0
  • Joined: 2019/01/08 16:06:03
  • Status: offline
2019/01/08 16:12:33 (permalink)
0

Forticlient SSLVPN Prelogon issue

Unable to connect to VPN on windows 10 via prelogon, get an 628 error.
 
- Windows 10 1803
- Forticlient 6.0.4.0182
- Fortigate 301E Firewall
- LDAP authentication
- Connecting to VPN within windows is successful.
- Trying to connect to VPN before windows 10 logon ( just comes up with an error 628) 
 
Has anyone else experienced this? or have any advice on how to resolve?
#1

4 Replies Related Threads

    Atomizer
    New Member
    • Total Posts : 11
    • Scores: 0
    • Reward points: 0
    • Joined: 2013/12/12 13:28:14
    • Status: offline
    Re: Forticlient SSLVPN Prelogon issue 2019/01/10 13:23:27 (permalink)
    0
    Hi,
     
    Just want to inform, we are seeing the exact same problem.
    FortiClient 6.0.4
    Fortigate 200E
    RADIUS Auth.
    VPN within windows is working flawless.
    We have a valid public certificate on the firewall.
     
    VPN before windows logon shows error 628.
    post edited by Atomizer - 2019/01/10 14:31:00
    #2
    Atomizer
    New Member
    • Total Posts : 11
    • Scores: 0
    • Reward points: 0
    • Joined: 2013/12/12 13:28:14
    • Status: offline
    Re: Forticlient SSLVPN Prelogon issue 2019/01/10 14:33:17 (permalink)
    0
    Im starting a support case tomorrow on this. And I'll inform here if I find a workaround.
     
    Please also do the same. Thanks.
    #3
    Synkrox
    New Member
    • Total Posts : 2
    • Scores: 0
    • Reward points: 0
    • Joined: 2018/10/11 00:51:08
    • Status: offline
    Re: Forticlient SSLVPN Prelogon issue 2019/03/08 02:06:41 (permalink)
    0
    Atomizer
    Im starting a support case tomorrow on this. And I'll inform here if I find a workaround.
     
    Please also do the same. Thanks.




    Did you get anywhere with this? Seeing the same here.
    Chris
     
    #4
    Atomizer
    New Member
    • Total Posts : 11
    • Scores: 0
    • Reward points: 0
    • Joined: 2013/12/12 13:28:14
    • Status: offline
    Re: Forticlient SSLVPN Prelogon issue 2019/03/08 02:24:45 (permalink)
    0
    Sorry for not getting back.
     
    Fortinet Support was not able to fix the problem, and we ultimately ended up not using the feature. :(
    Their only solution was to use Legacy mode, which changed the look and feel of the feature to something that our customer would not accept.
     
    If you want to refer to the case its this one: 3086347
     
    Pasted the answer from the support case:
     
    <use_legacy_vpn_before_logon> -- [1]
    <use_windows_credentials> ------ [2]
    <use_legacy_vpn_before_logon> -- [3]
     
    <vpn>
    <options>
    <current_connection_name>a.b.c.d</current_connection_name>
    <current_connection_type>ipsec</current_connection_type>
    <autoconnect_tunnel />
    <autoconnect_only_when_offnet>0</autoconnect_only_when_offnet>
    <keep_running_max_tries>0</keep_running_max_tries>
    <save_password>0</save_password>
    <minimize_window_on_connect>1</minimize_window_on_connect>
    <allow_personal_vpns>1</allow_personal_vpns>
    <disable_connect_disconnect>0</disable_connect_disconnect>
    <show_vpn_before_logon>1</show_vpn_before_logon> <----------------- 1
    <use_windows_credentials>1</use_windows_credentials> <-------------- 2
    <use_legacy_vpn_before_logon>1</use_legacy_vpn_before_logon> <---- 3
    <show_negotiation_wnd>0</show_negotiation_wnd>
    <vendor_id />
    </options>
    </vpn>
    #5
    Jump to:
    © 2019 APG vNext Commercial Version 5.5