Fortinet black logo

CLI Reference

Home FortiGate / FortiOS 6.0.0 CLI Reference

vpn ipsec forticlient

6.0.0
7.4.3
7.4.2
7.4.1
7.4.0
7.2.8
7.2.7
7.2.6
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.15
7.0.14
7.0.13
7.0.12
7.0.11
7.0.10
7.0.9
7.0.8
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.4.15
6.4.14
6.4.13
6.4.12
6.4.11
6.4.10
6.4.9
6.4.8
6.4.7
6.4.6
6.4.5
6.4.4
6.4.3
6.4.2
6.4.1
6.4.0
6.2.16
6.2.15
6.2.14
6.2.13
6.2.12
6.2.11
6.2.10
6.2.9
6.2.8
6.2.7
6.2.6
6.2.5
6.2.4
6.2.3
6.2.2
6.2.1
6.0.0
5.6.0
5.4.0
5.2.0
5.0.0
Copy Link
Copy Doc ID c287b6bf-a995-11e9-81a4-00505692583a:227667
Download PDF

vpn ipsec forticlient

Configure automatic VPN connection for FortiClient users. FortiClient users who wish to use automatic VPN configuration must be members of a user group. The command below creates a realm that associates the user group with phase 2 VPN configurations.

config vpn ipsec forticlient
    edit {realm}
    # Configure FortiClient policy realm.
        set realm {string}   FortiClient realm name. size[35]
        set usergroupname {string}   User group name for FortiClient users. size[35] - datasource(s): user.group.name
        set phase2name {string}   Phase 2 tunnel name that you defined in the FortiClient dialup configuration. size[35] - datasource(s): vpn.ipsec.phase2.name,vpn.ipsec.phase2-interface.name
        set status {enable | disable}   Enable/disable this FortiClient configuration.
    next
end

usergroupname <name>

Enter the name of a pre-existing user group created for dialup clients.

phase2name <name>

Enter the name of the pre-existing phase 2 tunnel configuration defined for the dialup-client configuration.

status {enable | disable}

Enable (by default) or disable IPsec VPN policy distribution.

Previous
Next

vpn ipsec forticlient

Configure automatic VPN connection for FortiClient users. FortiClient users who wish to use automatic VPN configuration must be members of a user group. The command below creates a realm that associates the user group with phase 2 VPN configurations.

config vpn ipsec forticlient
    edit {realm}
    # Configure FortiClient policy realm.
        set realm {string}   FortiClient realm name. size[35]
        set usergroupname {string}   User group name for FortiClient users. size[35] - datasource(s): user.group.name
        set phase2name {string}   Phase 2 tunnel name that you defined in the FortiClient dialup configuration. size[35] - datasource(s): vpn.ipsec.phase2.name,vpn.ipsec.phase2-interface.name
        set status {enable | disable}   Enable/disable this FortiClient configuration.
    next
end

usergroupname <name>

Enter the name of a pre-existing user group created for dialup clients.

phase2name <name>

Enter the name of the pre-existing phase 2 tunnel configuration defined for the dialup-client configuration.

status {enable | disable}

Enable (by default) or disable IPsec VPN policy distribution.

Previous
Next