FortiClient
FortiClient proactively defends against advanced attacks. Its tight integration with the Security Fabric enables policy-based automation to contain threats and control outbreaks. FortiClient is compatible with Fabric-Ready partners to further strengthen enterprises’ security posture.
Jonathan_Body_FTNT
Article Id 194171
Description
Saving VPN Xauth password on the VPN client is a security risk.  This article explains how VPN Xauth can be disabled through a windows registry setting when performing a custom installation.
Scope
All FortiClient users.
Solution
Xauth password saving can be disabled by modifying the windows registry setting from a custom installation in the following way.
  1. Create a new, or edit an existing MSI transform file.
  2. Edit the LOCAL_MACHINE\Software\Fortinet\FortiClient\FA_IKE registry key.
  3. Add the value DontRememberPassword as DWORD under the key.
  4. Set the value of DontRememberPassword to 1.

Contributors