DescriptionSaving VPN Xauth password on the VPN client is a security risk. This article explains how VPN Xauth can be disabled through a windows registry setting when performing a custom installation. ScopeAll FortiClient users. SolutionXauth password saving can be disabled by modifying the windows registry setting from a custom installation in the following way.
- Create a new, or edit an existing MSI transform file.
- Edit the LOCAL_MACHINE\Software\Fortinet\FortiClient\FA_IKE registry key.
- Add the value DontRememberPassword as DWORD under the key.
- Set the value of DontRememberPassword to 1.