Created on 09-19-2024 11:34 AM Edited on 09-22-2024 09:26 PM By Anthony_E
Description | This article describes that an imported certificate with its corresponding private key does not appear in the service provider available certificate drop box under single Sign-on settings. This is not the Identity Provider(IDP) Certificate (the one imported from Azure, for example). |
Scope | FortiGate. |
Solution |
This happens because the Service Provider Certificate key type must be RSA.
In order to appear in the drop box in SSO settings:
However, when the certificate key type is ECDSA:
It will not appear on the drop box:
It is a common case that certificates generated from certbot face this issue because, by default, certbot uses ECDSA instead of RSA. If using certbot, make sure to use this switch:
--key-type RSA
|
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.