Skip to main content
user
user
New Member
February 19, 2020
Question

Google Earth not working with Fortigate

  • February 19, 2020
  • 3 replies
  • 19222 views

When launch Google Earth, get message that:

Security certificate for play.google.com is not trusted!

With three options:

[ol]
  • Proceed Anyway (Unsafe)
  • Show Details
  • Reject Connection.[/ol]

    Company IT mentioned to click 1 but it says it is unsafe. Why is fortigate making Google Earth unsafe? Does this mean Fortigate people are break into my Google Earth and that is why it is unsafe? OR is Fortigate install spyware and Telemery like Windows in this security certificate?

      • 3 replies

      Dave_Hall
      Dave_Hall
      New Member
      February 19, 2020

      Most sites that run or hosted via Google (including play.google.com) uses Google's wildcard security certificate.  If the fgt is using full SSL (e.g. deep packet) inspection, you will get a security certificate warning because the fgt plays a man-in-the-middle by substituting it's own security certificate in place of the sites own security certification in order to peek at the encrypted traffic.  This is pure speculation on my part - you need to take a look at the warning message to see what the error is - it should include what the name is on the security certificate itself.   

       

      The pic below show what the real cert should look like.

       

       

       

      user
      userAuthor
      New Member
      February 20, 2020

      If view the details, it shows this (cannnot get screenshot to load here) Type only a few lines only:

       

      Certificate error(s":

      The root certificate  of the certificate is self signed and untrusted.

      Serial Number: 60:15:1a:b3c5ef:1e:18

      support@fortigate.com

      user
      userAuthor
      New Member
      February 21, 2020

      Here I finally got screenshot to work on Vbox. It makes PNG and your site does not allow PNG. Had to uploaded to another site to get it to work.

      [image]https://forum.fortinet.com/ upload image[/image]

      emnoc
      emnoc
      New Member
      February 21, 2020

      Your doing SSL inspection you need to fix your clients by insert and trusting the Cert forger who's the Foprtigate. Nothing is wrong with google earth, fwiw

       

      Ken Felix

       

      Patel
      Patel
      New Member
      June 12, 2020

      Hi,

       

      You might want to check your policies as it can be possible if you misconfigured your device. FortiGate does not make any websites or certificates unsafe. It does what it needs to as per the configuration. You can refer to the below link for more information:

       

       

      https://kb.fortinet.com/kb/documentLink.do?externalID=FD41394

       

      Regards,

      Patel

       

      user
      userAuthor
      New Member
      June 23, 2020

      The bypass method gets around fortigate settings. Now it works fine. No more message about not being safe.

      yanafig
      yanafig
      New Member
      November 12, 2021

      user wrote:

      The bypass method gets around fortigate settings. Now it works fine. No more message about not being safe.

      Can you share what did you do?

      Terms & ConditionsAccessibility statement