Case Western Reserve University provides remote users with secure access to the network over the VPN client. VPN is a point-to-point connection between a personal computer and CWRU servers. Users must first download the VPN client for their respective operating system. Once they are connected through VPN, users can utilize a web browser to access various tools within CWRU such as the Software Center. Only active members of the university have the ability to utilize VPN. Alumni do not have access to this service.
This article documents the installation procedure for installing FortiClient and registering it to the FortiClient Endpoint Management Server (EMS) for proper licensing.
Installing FortiClient for macOS
1) Please uninstall any FortiClient VPN app (use "Uninstall Forticlient" app in Applications Folder )
2) Download Fortclient Installer here.
3) Open Forticlient install .dmg disk image
4) Run "Install" pkg file using default options.
5) Select "Allow" when ask " "FortiTray" would like to Add VPN Configurations."
6) Allow Forticlient to make change to "Certificate Settings"
7) After installation is completed, open "System Preferences" -> "Privacy & Security"
8) Under "Security" section, look for various pending notification
- "System software from application "FortiClientNetwork" was blocked from loading. Select the "Allow" button.
- If you see a dialog box "System extension blocked", click the "Open Settings" button.
- "Some system software requires your attention before it can be used.", Click "Details".
9) Open FortiClient app
10) Enter EMS server address "fgt-ems-vpn1.case.edu" and register with the EMS server
11) Verify FortiClient is now connected to EMS
12) Establish VPN connection
13) Disconnect VPN connection
Installing FortiClient for iOS or Android devices
1) Please remove any existing FortiClient app (e.g. "FortiClient VPN" or FortiClient 6.0 (Legacy) )
2) Open App Store, and search for "FortiClient"
3) Install FortiClient app under Business Category (note the Icon is different.)
IOS
Android
4) Open the newly installed "FortiClient" app
5) Grant permission for FortiClient if asked (e.g. notification, location access or camera)
6) Review "Policy Highlights" and tab "I accept" button.
7) Under "Please Login" screen, tab "User Input"
8) Enter your name in the Name field and tab "Done" and tab "Next"
9) If asked, tab "Allow" and allow "FortiClient" to add new VPN Configuration
10) Enter device passcoded if needed
11) Under "Zero Trust Telemetry" screen, verify "Connect to" field is set to EMS IP.
12) Tab "Specify IP" or "Specify EMS IP"
13) Enter the follow information and tab "Done". (Host = fgt-ems-vpn1.case.edu and port = 8013 ).
14) Tab allow if asked about "Untrusted Certification"
15) Ensure "Zero Trust Telemetry Connection" is toggled ON.
Note: If EMS connection is successful, you will see the "Centrally Managed by EMS" message. You may have to force quit the FortiClient app and re-open.
16) Tab "VPN" at the bottom of the screen
17) Tab "Connections"
18) Tab "CWRU VPN" under Corporate VPN Gateway
19) Verify 'CWRU VPN' connection is checked.
20) Tab "<VPN" on top left to return to main VPN screen
Starting and disconnecting a VPN connection
1) Open "FortiClient" App
2) Tab "Vpn" at the bottom of the screen to bring up VPN main screen
3) Turn the "VPN" toggle to ON to start a VPN connection
4) Enter your CWRU network ID and your passphase. Be sure to respond to your DUO 2FA Prompt
5) Note the status becomes "Connected" if authentication is successful.
6) To disconnect, toggle "VPN" to OFF position.
Manually configure a VPN Profile (optional)
1) Tab "VPN" at the bottom of the screen
2) Tab "Connections"
3) Tab "Add Configuration.."
4) Enter the following information and tab "Save"
Name: CWRU VPN
Host: vpn2.case.edu
Port: 443
User: abc123 (optionally, enter your CWRU network ID)
5) Tab "<VPN" on top left and again on the next screen to return to main VPN screen