Forticlient VPN Setup

From The University of Akron Support Wiki
Revision as of 21:09, 17 March 2020 by Mwilliams1 (Talk | contribs)

Jump to: navigation, search

What is a VPN

A Virtual Private Network (VPN) uses an existing internet connection to establish a direct link to the campus network. This can be useful for accessing resources that require a campus network connection.

The VPN that The University of Akron uses is FortiClient.


Download FortiClient

Note:
    - If you are using a University of Akron owned computer, FortiClient should already be installed and you do not need to download the client. If it is not, please contact the Help Desk.
    - If you are using a Mac OSX device and already have the FortiClient installed, attempting to install the client from the link above will result in a failure message "No updates found."  Ignore this message and use the FortiClient already installed on your computer.
    - The Installer can take a several minutes to install.  It is recommended that, if possible, you download, install, and test the FortiClient while on campus before you need it for remote access.

To download FortiClient please click the following link: https://www.forticlient.com/downloads


Windows & MacOS Setup

(Forticlient is available, with offical support for Windows 7 or higher, Mac OS v10.8 or higher.)

For detailed instructions on downloading and setting up FortiClient for Windows or MacOS please click here.

  • The above guide uses Windows, but the process for MacOS is nearly identical.


If you only need information on setting up a new VPN connection in FortiClient, please see the image below:

Error creating thumbnail: Unable to save thumbnail to destination


Linux Setup


Fortigate Supported Linux Distributions

If you are running Fedora, CentOS, or Ubuntu, please follow the instructions for installation at Fortigate's support site to install from their application repositories.

https://www.forticlient.com/repoinfo

Once installed, please configure according to the instructions starting at step 11) below.


Other Distributions

If you are running a different distribution Than the ones that Fortigate supports, you need the statically compiled version. Instructions for installation are below.

Tested on Ubuntu 18.04. The appearance of your windows may vary based on your system's configuration.

Note: This procedure requires root privileges on the Linux workstation.

GUI Version

1.)

1 - Download a copy of the Fortinet SSL VPN Client for Linux to your Computer: Click Here to Download

2 - In the file manager, navigate to the folder containing this file.

NOTE: You will need to sign into Microsoft Online with your UAkron email and password in order to download the installer.

Error creating thumbnail: Unable to save thumbnail to destination

2.)

Right click the archive and select Extract Here.

Error creating thumbnail: Unable to save thumbnail to destination

3.)

Open the newly extracted folder.

Error creating thumbnail: Unable to save thumbnail to destination

4.)

Navigate to the forticlientsslvpn folder.

Error creating thumbnail: Unable to save thumbnail to destination

5.)

Navigate to the 64bit folder if your machine has a 64-bit processor. If not, navigate to the 32bit foklder.

Error creating thumbnail: Unable to save thumbnail to destination

6.)

Double click the forticlientsslvpn file.

Error creating thumbnail: Unable to save thumbnail to destination

7.)

Follow the prompts to grant privileges and accept the license agreement.

Error creating thumbnail: Unable to save thumbnail to destination

Error creating thumbnail: Unable to save thumbnail to destination

Error creating thumbnail: Unable to save thumbnail to destination

8.)

1 - The first time you run the client, you must configure the profile.

2 - Click on Settings.

Error creating thumbnail: Unable to save thumbnail to destination

9.)

On the settings screen, click the + button in the lower left corner to add a connection profile.

Error creating thumbnail: Unable to save thumbnail to destination

10.)

Configure the profile to connect to vpn.uakron.edu on port 443.

NOTE: that the default is 10443, which is not correct.

Error creating thumbnail: Unable to save thumbnail to destination

11.)

Click the create button. You now can select the newly created profile and connect with your UANET credentials. A successful connection will result in a window showing traffic flowing in each direction.

NOTE: If presented with a certificate error, accept it to continue.

For connections in the future, just double click the forticlientsslvpn file as above – you will not need to repeat the configuration process. You may wish to create a shortcut to this file in your launcher or desktop. The procedure for that varies by distribution.

Error creating thumbnail: Unable to save thumbnail to destination

CLI Version

1.)

NOTE: This method requires iproute (or iproute2) & ppp.

With root privileges, copy Forticlient SSLVPN tarball to an appropriate location, such as /usr/local/sbin/.

2.)

Change directory to location of tarball file and, with root privileges, extract Forticlient SSLVPN tarball:

cd /usr/local/sbin/

tar -xvzf forticlientsslvpn_linux_version.tar.gz

3.)

Change directory to the location of the setup script appropriate to your architecture (32-bit or 64-bit):

cd forticlientsslvpn/64bit/helper/

4.)

With root privileges, run the setup script and accept the license:

./setup.linux.sh

5.)

Change directory to the parent of the current directory,which in this case would be forticlientsslvpn/64bit/:

cd ../

NOTE: Full path should be /usr/local/sbin/forticlientsslvpn/64bit/

6.)

With root privileges, run the GUI-based client to configure the VPN connection parameters:

./forticlientsslvpn

On the main screen, click the Settings button.

7.)

On the settings screen, click the + button at the bottom of the Connection Profiles column to create a new profile.

In this case, the profile is simply named ua.

Enter the following:

-The name or IP address of the VPN server - vpn.uakron.edu

-The port on which it is listening for connections - 443

-Your UANet ID and password.

Click Done and then quit the forticlientsslvpn application.

Note: It seems to be a quirk of the application, but you must quit and restart it when you change settings, such as changing your password.

8.)

With root privileges, run the GUI-based client and click the Connect button.

If all goes well, a connection status window should appear which will show that the tunnel is running.

To disconnect, click the Stop button.

9.)

Note: You may want to configure a desktop shortcut to the forticlientsslvpn application. How this is done will depend on your desktop environment. Remember that the shortcut will need to run the application with root privileges.

For example, in the Trinity Desktop Environment, the command tdesu followed by an executable application will prompt for the root password and then run the application with root privileges. The command which the desktop shortcut should run would be as follows:

tdesu /usr/local/sbin/forticlientsslvpn/64bit/forticlientsslvpn