| Description |
This article discusses how to configure the ACME certificate with certificate management services other than Let's Encrypt on 7.0.2 and above. |
| Scope |
FortiOS 7.0.2 and above. |
| Solution |
FortiGate provides an option to choose between Let's Encrypt, and other certificate management services that use the ACME protocol.
Up until 7.0.1, GUI option was available to choose between 'Let's encrypt' or 'Other' under ACME services.
The option 'Other' allows to define the acme-url other than Lets encrypt.
7.0.1 : 
Note: Starting with FOS 7.0.2 'Other' cannot be chosen in the GUI anymore.
7.0.2:
In 7.0.2 and onwards this option is available only via CLI.
#config vpn certificate local set enroll-protocol acme2 set acme-ca-url https://#####" <-----Enter the other CA's url acme-domain : example.com acme-email : example.com next end
Related docs:
https://community.fortinet.com/t5/FortiGate/Technical-Tip-ACME-certificate-configuration/ta-p/205115 |
