Skip to main content
lmassip
Staff
lmassip
Staff
May 26, 2025

Technical Tip: Certificate does not appear in Virtual Server configuration

  • May 26, 2025
  • 0 replies
  • 682 views
Description This article describes an issue where a valid local certificate does not appear as an option when configuring a Virtual Server on FortiGate.
Scope FortiGate.
Solution

For a local certificate to be selectable under Policy & Objects -> Virtual Servers, the certificate must include the TLS Web Server Authentication value under the Extended Key Usage field.

 

To verify:

  1. Go to System -> Certificates.
  2. Select the certificate and review the details.
  3. Ensure that the Extended Key Usage includes: TLS Web Server Authentication.

If this value is missing, FortiGate will not recognize the certificate as valid for Virtual Server usage.

 

Resolution:
Request a new certificate from the Certificate Authority (CA), ensuring that the CSR (Certificate Signing Request) includes the correct Extended Key Usage extension.

 

Related article:

Technical Tip: Configure a virtual server
    Terms & ConditionsAccessibility statement