Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
bbae
Staff
Staff

Created on ‎08-10-2023 11:40 PM Edited on ‎08-16-2023 07:33 AM By Moderator

Article Id 268182

Troubleshooting Tip: The error message 'Unable to load VPN map from server' appears when selecting 'VPN Location Map'

Description This article describes how to resolve the 'Unable to load VPN map from server' error.
Scope FortiGate, IPSec VPN, VPN, 7.0.11 and above, 7.2.1 and above.
Solution

When selecting 'VPN Location Map', sometimes the GUI may not load and will instead raise the error 'Unable to load VPN map from the server'. For example:

 

Unable to load.PNG

 

A feature to validate certificates of 'mapserver.fortinet.com' was introduced in versions 7.2.1 and 7.0.11.

FortiGate's default certificate store does not trust all of the certificates in the chain of 'mapserver.fortinet.com' to load.

 

After manually downloading all CA in the chain from 'mapserver.fortinet.com' and uploading them to FortiGate as a trusted CA, the VPN Location Map will successfully load. See the steps below.

 

  1. Manually download the CA in the chain from 'mapserver.fortinet.com'.

 

Unable to load2.PNG


Alternatively, download the certificate from DigiCertGlobal here.

  1. Upload it to FortiGate as a trusted CA.

 

Unable to load3.PNG


  1. Test to see if it works as intended.

    Unable to load4.PNG

 

Related article:

Technical Tip: Working of VPN location map.
1231
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.