Help
FortiPAM
FortiPAM allows you to protect, isolate and secure privileged account credentials, manage and control privileged user access, and monitor and record privileged account activity.
mturic
Staff & Editor
Staff & Editor

Created on ‎01-02-2025 09:25 AM

Article Id 367758

Technical Tip: Adjusting TLS versions for FortiPAM GUI access

Description This article describes how the minimum and maximum TLS settings for FortiPAM GUI access can be adjusted.
Scope FortiPAM 1.x.
Solution

FortiPAM uses a VIP object for GUI access which has its own TLS security settings. 

The VIP object's TLS settings need to be adjusted via the CLI.

 

For example, to set the minimum TLS version:

config firewall vip
    edit "fortipam_vip"
        set ssl-min-version tls-1.2
    end

 

Example of how to set the maximum TLS version:

config firewall vip
    edit "fortipam_vip"
        set ssl-max-version tls-1.2
    end

 

FortiPAM as of version up to 1.5.0 supports the following SSL min/max versions:

 

set ssl-max-version <SSL_version>

ssl-3.0  -> SSL 3.0
tls-1.0  -> TLS 1.0

tls-1.1  -> TLS 1.1

tls-1.2  -> TLS 1.2

tls-1.3  -> TLS 1.3
Labels:
315
0 Kudos
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.