Skip to Content

How to fix “credentials or sslvpn configuration is wrong (-7200)” error when 2FA enabled in SSL VPN connection

By: Author Alex Lim

Posted on  - Last updated:

Categories Troubleshooting

This article describes how to rectify the error ‘credentials or sslvpn configuration is wrong (-7200)’ when 2FA is enabled in the SSL VPN connection.

Scope

FortiGate v6.2 and below.

Solution

The issue mainly occurred on FortiGate v6.2, and when 2FA was enabled.

When 2FA is enabled, the correct behavior is the user should receive a notification code for the two-factor authentication once the credential has been entered, however, in this instance, the user received no prompt messages for 2FA and instead received an error.

How to fix "credentials or sslvpn configuration is wrong (-7200)" error when 2FA enabled in SSL VPN connection

The fix for this issue is to manually enter the token code and append it to the password during authentication.

The format will be ‘password+2FA‘.

Example:

Password: Test
Token code: 1234

The user should use ‘Test1234‘ when logging in to the authentication prompt.

When logging into the authentication prompt, the user should use the format ‘password+2FA‘ or type ‘Test1234‘.

Credential or sslvpn configuration is wrong
Credential or ssl vpn configuration is wrong