We got our configs back from another machine - but, several useful information and pointers in this thread, so feel free to read on
--------
… is this normal? A simple, minor upgrade zeroed all VPNs that were configured on the client… we are talking hours and hours of work - any way those settings could be recovered?
Should not there be a warning message about losing all configuration settings while upgrading?
And then we ask why people does not want to keep up with software upgrades and uses old, vulnerable software all the time… this is why.
We have a manual config file we send out via gpo. You can also push out the configure via registry and gpo.
I have a saved registry somewhere if I remember I’ll try to find the settings for you next week. I believe most of the settings can be on the computer side instead of the local user.
If you are lucky the settings are in a random temp folder, check install logs and you should see FortiClientVPN trying to do a backup before upgrade. Most of the time this is deleted on successful upgrade but seen it fail to delete (and fail to backup) when I did testing with EMS a few months ago
Genuinely shocked at the number of people attacking here for “using the free version” instead of having EMS. As a reseller I continue to be genuinely embarrassed by the fact this used to be managed by included capabilities and was broken out to paid standalone software that you must license separately. I genuinely would never recommend a paid VPN/ZTNA solution from Fortinet after experiencing the nonsense we have with it. (Both paid and free version)
When will IT leaders learn. To get off the dime and dont run your busines on free stuff. For christ sake companies have to pay employees and development cost ect… they will pay $9.99 a month for their iphone cloud space. OMG, get off the dime bro and purchase a product any product
you can complain about the update bugs/problems, but you must backup your config always before update, it is quite irresponsible not to have a backup of your configuration
If I were your boss, that will be you first and last warn.
You should know how to do your job, and backing up your settings before any upgrades is basic.
Should not there be a warning message about losing all configuration settings while upgrading?
no, when it is not known, like a bug
And then we ask why people does not want to keep up with software upgrades and uses old, vulnerable software all the time… this is why.
Oh well, I discovered there how to extract the FortiClient .MSI without having to download it every time - so long, useless waiting times, it’s going straight to my NAS share now - thanks
While we are getting dirty hands from messing into the registry, could I ask if you have any pointers to the other useful settings not visible from the (free) client GUI, like “remember password” and “do not warn about invalid SSL certificate”?
Although the need for the latter is getting less frequent, SSL Cert automatic renewal through Let’s Encrypt looks like it’s working well enough, with FortiOS 7.0.x onward - plan is to cover all missing SSL certs with Let’s Encrypt going to the year end.
Still some old firewalls out there, but basically the all of them will be replaced in the next 3 weeks, and everything brought up to 7.0.x as a FortiOS baseline - we are leaving 6.4.x for good after a couple false starts.
