Skip to main content
sjerry
Staff
sjerry
Staff
July 25, 2024

Technical Tip: How to create a corporate owned internal CA

  • July 25, 2024
  • 0 replies
  • 655 views
Description

This article describes how to act as a Certificate Authority (CA) and use a custom internal certificate, as long as all systems in the domain use the same certificate:

Determine FortiNAC Certificate Targets to Secure.
Scope FortiNAC.
Solution

Step 1: Select Generate CSR from Certificate Management.


For example: Below is an example of a singular FortiNAC. In HA environments include the primary and secondary FQDN in SAN Step 5.


Step1_Internal.png

 

Step 2: Copy the output as shown in the example.


Step2_Internal.png

Step 3: Assuming certsrv is already set up, the next step would be the following:

Step3_Internal.png
Step 4: Select the following.


Step4_Internal.png


Step 5: Copy content from step 2. Press submit and then download the certificate chain as shown below.


Step5_Internal.png

 

Step5_Internal2.png

 

Step 6: Add a certificate to the desired target. A full internal certificate chain should now be in place.


Step6_Internal.png

 

Step6_Internal2.png

 

 

Step6_Internal3.png
    Terms & ConditionsAccessibility statement