Help
FortiNAC
NOTE: FortiNAC is now named FortiNAC-F. For post-9.4 articles, see FortiNAC-F. FortiNAC is a zero-trust network access solution that provides users with enhanced visibility into the Internet of Things (IoT) devices on their enterprise networks.
sjerry
Staff
Staff

Created on ‎07-25-2024 11:01 AM Edited on ‎07-25-2024 10:08 PM By Community Manager

Article Id 328084

Technical Tip: How to create a corporate owned internal CA

Description

This article describes how to act as a Certificate Authority (CA) and use a custom internal certificate, as long as all systems in the domain use the same certificate:

Determine FortiNAC Certificate Targets to Secure.
Scope FortiNAC.
Solution

Step 1: Select Generate CSR from Certificate Management.


For example: Below is an example of a singular FortiNAC. In HA environments include the primary and secondary FQDN in SAN Step 5.


Step1_Internal.png

 

Step 2: Copy the output as shown in the example.


Step2_Internal.png

Step 3: Assuming certsrv is already set up, the next step would be the following:

Step3_Internal.png
Step 4: Select the following.


Step4_Internal.png


Step 5: Copy content from step 2. Press submit and then download the certificate chain as shown below.


Step5_Internal.png

 

Step5_Internal2.png

 

Step 6: Add a certificate to the desired target. A full internal certificate chain should now be in place.


Step6_Internal.png

 

Step6_Internal2.png

 

 

Step6_Internal3.png
Labels:
269
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.