New Feature Request - customize ACME provider

Forum|Forum|7 months ago
October 24, 2025
2 replies
294 views

Good afternoon,

according to SSL certificate shortening, is there possible to NFR customizing ACME provider (GEANT CA), not only Letsencrypt ?

In this time I found that customizing ACME provider in not possible, right ?

FortiWeb ? FortiGate ?

Thanks and best regards

J.Karliak

Certificate

Anthony_E

Staff

Hello Josef,

Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.

Thanks,

Best Regards

Anthony_E

Staff

Hello Josef,

Yes, it is possible to customize the ACME provider on FortiGate to use a service other than Let's Encrypt, such as GEANT CA. However, starting with FortiGate v7.0.2, this option is only available via the CLI. Here are the steps to configure it:

Access the FortiGate CLI.

Enter the following commands to configure the ACME certificate:

config vpn certificate local edit <certificate_name> set enroll-protocol acme2 set acme-ca-url <url>  # Enter the GEANT CA server/CA URL. set acme-domain <domain which resolves to FortiGate public IP address> set acme-email <valid email address> next end

Make sure to replace <certificate_name>, <url>, <domain>, and <email> with your specific details.

Best Regards

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded