Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
jballini
Staff
Staff

Created on ‎11-25-2024 08:11 AM

Article Id 359818

Technical Tip: Verify if the CA certificate in Windows PC/laptop is matching the Certificate in FortiGate

Description The article describes a troubleshooting step for a specific certificate issue and provides steps on how to make sure the CA that has generated the certificate is available in the Customer PC/laptop Windows OS
Scope

FortiGate.
Solution

 

  1. The CA that has generate the certificate needs to be available in the OS.
    In order to check, go to Start -> Run -> Mmc -> Add -> Certificate store.

   run and run system.png

 

Mmc.png

 

Select OK.

 

2nd of 1st.png

 

2nd of 2nd.png

 

2nd of 3rd.png

 

After selected the 'Certificates' click on 'Add'.

 

  1. Download the certificate from the FGT GUI: Security Profiles -> SSL/SSH Inspection and select 'deep-inspection' -> select the specific CA certificate related to the captive portal -> Select 'Download'.
  2. At this point install it on the PC and test:

  1. Cname must match URL

  2. Expiry date should be valid.
303
0 Kudos
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.