Technical Note : Ensuring PCI compliance for HTTPS
Description
Encryption for HTTPS is not configured on the FortiGate device itself but on the certificate used by the FortiGate for the HTTPS negotiation.
A new certificate must be generated with the encryption requirements needed for the HTTPS connection in question.
Once a new certificate has been generated with the required information then the it can be imported into the FortiGate using the GUI System > Certificate > Import.
Run the following commands on the CLI to activate the imported certificate:
| # config system global # set admin-server-cert <certificate> # end |
Scope
All FortiGate users.
Solution
