Skip to main content
Jonathan_Body_FTNT
Staff
Staff
February 22, 2010

Technical Note : Ensuring PCI compliance for HTTPS

  • February 22, 2010
  • 0 replies
  • 1764 views

Description

Encryption for HTTPS is not configured on the FortiGate device itself but on the certificate used by the FortiGate for the HTTPS negotiation.
 
A new certificate must be generated with the encryption requirements needed for the HTTPS connection in question.
 
Once a new certificate has been generated with the required information then the it can be imported into the FortiGate using the GUI System > Certificate > Import.
 
Run the following commands on the CLI to activate the imported certificate:
# config system global
# set admin-server-cert <certificate>
# end


Scope

All FortiGate users.


Solution