New Member

Solved

Fortiewb SHA2 certificate

Forum|Forum|6 years ago
November 22, 2019
1 reply
5312 views

Hi,

we want to generate a CSR for a web site certificate

The only option is the 2048 bits

we do not have an option to generate SHA2 CSR

Is there a command line for this?

SSL

Best answer by abelio

Hi

It's not mandatory generate a CSR from Fortiweb itself

Use your favourite tools to accomplish that and import back into the waf.

abelioAnswer

SuperUser

Hi

It's not mandatory generate a CSR from Fortiweb itself

Use your favourite tools to accomplish that and import back into the waf.

slaskaridisAuthor

New Member

abelio wrote:
Hi
It's not mandatory generate a CSR from Fortiweb itself
Use your favourite tools to accomplish that and import back into the waf.

Hi Abelio,

thank you for your reply.

Which tool do you suggest will generate a compatible CSR by Fortiweb? A linux server and oppenssh maybe?

What is the procedure to import the certificate and privcate key back to the Fortiweb?

I canot find any document for this.

Thanks again.

Sokratis

slaskaridisAuthor

New Member

abelio wrote:
Hi
It's not mandatory generate a CSR from Fortiweb itself
Use your favourite tools to accomplish that and import back into the waf.

Hi Abelio,

you pointed to the right diection. The issue is solved as below:

I installed openssl cmd to a PC.

i ran the cmd:

openssl req -out CSR.csr -new -newkey rsa:2048 -nodes -keyout privatekey.key -sha256

I uploaded the CSR to the CA

I downloaded the Certificate

I mported the private key created by cmd and the certificate to the fotiweb following this:

https://help.fortinet.com/fweb/admin_hlp/4-4-0/wwhelp/wwhimpl/common/html/wwhelp.htm?context=FortiWeb_Online_Help&file=ssl_23_9.html

I applied the certificate to the respective policies

Works like a charm!!

Thank you

Sokratis

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded