Forticlient VPN Setup

From The University of Akron Support Wiki
Jump to: navigation, search

Windows & MacOS

(Forticlient is available, with offical support for Windows 7 or higher, Mac OS v10.8 or higher.)


First click on 'Remote Access'.
Then 'Configure VPN'.

When setting up the VPN client enter the following information:

VPN: SSL-VPN
Connection Name: UA VPN
Description: UA VPN
Remote Gateway: vpn.uakron.edu
Customize port: 443 (check the box)
Client Certificate: None
Authentication: Prompt on login
Click Save


When logging into this VPN you will be prompted to enter your UANET ID and password.

Linux

GUI Version

1.)

1 - Download a copy of the Fortinet SSL VPN Client for Linux to your Computer: https://uazips.sharepoint.com/:u:/s/software/EY0PAvQbx25ItyCRzFiqc9wBT9dIkBhpzmVDnA8vjJUzuw?e=3ftoOz

2 - In the file manager, navigate to the folder containing this file.

NOTE: You will need to sign into Microsoft Online with your UAkron email and password in order to download the installer.

Linux VPN 1.png

2.)

Right click the archive and select Extract Here.

Linux VPN 2.png

3.)

Open the newly extracted folder.

Linux VPN 3.png

4.)

Navigate to the forticlientsslvpn folder.

Linux VPN 4.png

5.)

Navigate to the 64bit folder if your machine has a 64-bit processor. If not, navigate to the 32bit foklder.

Linux VPN 5.png

6.)

Double click the forticlientsslvpn file.

Linux VPN 6.png

7.)

Follow the prompts to grant privileges and accept the license agreement.

Linux VPN 7.png

Linux VPN 8.png

Linux VPN 9.png

8.)

1 - The first time you run the client, you must configure the profile.

2 - Click on Settings.

Linux VPN 10.png

9.)

On the settings screen, click the + button in the lower left corner to add a connection profile.

Linux VPN 11.png

10.)

Configure the profile to connect to vpn.uakron.edu on port 443.

NOTE: that the default is 10443, which is not correct.

Linux VPN 12.png

11.)

Click the create button. You now can select the newly created profile and connect with your UANET credentials. A successful connection will result in a window showing traffic flowing in each direction.

NOTE: If presented with a certificate error, accept it to continue.

For connections in the future, just double click the forticlientsslvpn file as above – you will not need to repeat the configuration process. You may wish to create a shortcut to this file in your launcher or desktop. The procedure for that varies by distribution.

Linux VPN 13.png

CLI Version

1.)

NOTE: This method requires iproute (or iproute2) & ppp.

With root privileges, copy Forticlient SSLVPN tarball to an appropriate location, such as /usr/local/sbin/.

2.)

Change directory to location of tarball file and, with root privileges, extract Forticlient SSLVPN tarball:

cd /usr/local/sbin/

tar -xvzf forticlientsslvpn_linux_version.tar.gz

3.)

Change directory to the location of the setup script appropriate to your architecture (32-bit or 64-bit):

cd forticlientsslvpn/64bit/helper/

4.)

With root privileges, run the setup script and accept the license:

./setup.linux.sh

5.)

Change directory to the parent of the current directory,which in this case would be forticlientsslvpn/64bit/:

cd ../

NOTE: Full path should be /usr/local/sbin/forticlientsslvpn/64bit/

6.)

With root privileges, run the GUI-based client to configure the VPN connection parameters:

./forticlientsslvpn

On the main screen, click the Settings button.

7.)

On the settings screen, click the + button at the bottom of the Connection Profiles column to create a new profile.

In this case, the profile is simply named ua.

Enter the following:

-The name or IP address of the VPN server - vpn.uakron.edu

-The port on which it is listening for connections - 443

-Your UANet ID and password.

Click Done and then quit the forticlientsslvpn application.

Note: It seems to be a quirk of the application, but you must quit and restart it when you change settings, such as changing your password.

8.)

With root privileges, run the GUI-based client and click the Connect button.

If all goes well, a connection status window should appear which will show that the tunnel is running.

To disconnect, click the Stop button.

9.)

Note: You may want to configure a desktop shortcut to the forticlientsslvpn application. How this is done will depend on your desktop environment. Remember that the shortcut will need to run the application with root privileges.

For example, in the Trinity Desktop Environment, the command tdesu followed by an executable application will prompt for the root password and then run the application with root privileges. The command which the desktop shortcut should run would be as follows:

tdesu /usr/local/sbin/forticlientsslvpn/64bit/forticlientsslvpn