FortiAuthenticator provides centralized authentication services for the Fortinet Security Fabric including multi-factor authentication, single sign-on services, certificate management, and guest management.
This article describes how to renew the default server certificate when the user receives an error stating that it has expired.
Scope
FortiAuthenticator.
Solution
To renew the expired certificate, choose one of the following actions:
1) Re-upload the license to FortiAuthenticator (causes a reboot).
2) Upgrade firmware (causes a reboot).
3) Reboot FortiAuthenticator.
4) If on firmware 6.4.2 and newer: In the CLI, run execute regen-cert.
Each option will renew the certificate.
Note:
This only affects the certificate that comes with the default factory build AND expired. It does not affect certificates that are externally signed and created.
