Join GitHub today
GitHub is home to over 40 million developers working together to host and review code, manage projects, and build software together.Sign up
Debian 9 - Connect button does nothing #6
Hi, I have just installed the GUI client from the repo and it seems that the "Connect" button doesn't do anything.
Adding the VPN works, but I can't connect after. There is nothing relevant in the logs just this
I've just tried https://hadler.me/linux/forticlient-sslvpn-deb-packages/ - and it works just fine.
Hello, please try the latest version 0.2.13 or build from git.
The new version has better logging support. You can find the logs for each VPN in ~/.openfortigui/logs/vpn. You can also enable "Debug" logging by ticking the option in your VPN-Profile. Have a try again.
Also check that your user can execute openfortigui via sudo without password.
Looks like running 2.13 with sudo did the trick. I have a password for sudo as I don't really feel like it's a good security measure to have some kind of filter when escalating privileges. I know that
Logs for the vpn show
Nothing relevant in the gui log file. No stack trace in my case.
Is that something that could be adapted for the GUI version?
Running the program as root is not recommended. It only requires root privileges for system-network access when starting a VPN. For details see here: https://github.com/adrienverge/openfortivpn
With .deb install there should be a sudoers file installed into /etc/sudoers.d/openfortigui . By default everyone in sudo group has the required permissions for openfortigui.
Logs are not that accurate right now, but we are working on : )
forticlient-sslvpn uses setuid/suid so no additional sudo is required. This doesnt mean its more safe.
I wasn't directly running as root, just starting the binary with sudo. I was mostly asking because I was previously going through the app menu and manually selecting the icon. Which I assume, launches openfortigui without any elevated permissions. My user is also member of the sudo group.
I don't have an issue with going through sudo when I start the VPN.
Thanks again for all your work, it's awesome.