FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
# Log into the FortiGate via Webgui. # Go to System > Certificates > Local Certificates # Click on "Import". # Select "Certificate". # For "Certificate file", choose mycert.crt. # For "Key file", choose private.key. # For "Password", type in the password that was used to generate the CSR. # For "Certificate Name", put in a preferred name.
# Click 'OK" to save the configuration.
# Log into the FortiGate via SSH. # To change the HTTPS webgui management certificate, type in the commands:
config system global set admin-server-cert mycert end
# To change the SSLVPN web portal certificate, type in the commands:
config vpn ssl setting set servercert mycert end
5. The certificate used in HTTPS webgui management and SSLVPN web portal will now be using SHA-256 as the hashing algorithm.
6. This process mitigates the vulnerability (CVE-2004-2761).
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.