#config firewall policyIn this first case, the URL that the user's browser will see is : https://my.fortigate.com:1003/
edit <my_policy_ID>
set auth-redirect-addr "my.fortigate.com"
next
end
#config firewall policyReminder: The HTTPS redirect function and port can be configured from the following CLI commands:
edit <my_policy_ID>
set auth-redirect-addr "the_public_Virtual_IP"
next
end
#config user settingIn the case it is required to configure a different presented certificate, the parameter is:
set auth-secure-http enable (default = disable)
end
config system global
set auth-https-port 1442 (default = 1003)
end
#config user settingIn this case, auth-cert must be signed by auth-ca-cert in order not to trigger the untrusted certificate error, and the auth-ca-cert must be added to the browser.
set auth-cert <auth-cert>
set auth-ca-cert <auth-ca-cert>