FortiWeb
A FortiWeb can be configured to join a Security Fabric through the root or downstream FortiGate.
kmak
Staff
Staff
Article Id 255706
Description This article describes how to export the unencrypted private key and certificate installed in FortiWeb.
Scope FortiWeb.
Solution

Prerequisite:

- SSH CLI access enabled in FortiWeb.

- Account has the privilege to enable backend-shell access in FortiWeb.

 

1) Log in to FortiWeb GUI and check for the certificate name.   

         

kmak_0-1683513976305.jpeg

 

2) Log in to FortiWeb SSH CLI, and enable the backend shell access and user.

 

kmak_1-1683513976307.jpeg

 

3) Open a new FortiWeb SSH CLI console and log in using the backend shell username and password.

 

kmak_2-1683513976308.jpeg

 

4) In the backend shell console, access the directory of where the SSL certificate stored.

(/data/etc/cert/local/root).

 

kmak_3-1683513976310.jpeg

 

5) Use commands like 'cat' or 'vi' to print or open the Private Key and Certificate files.

- Private key example:

 

kmak_4-1683513976319.jpeg

 

- Certificate example:

 

kmak_5-1683513976327.jpeg

 

6) Copy and paste the key and certificate into two separate files with proper naming and file extension type.

 

- Private Key example:

 

kmak_6-1683513976334.jpeg

 

- Certificate example:

 

kmak_7-1683513976340.jpeg

 

Related Document:

https://docs.fortinet.com/document/fortiweb/7.2.2/administration-guide/173192/secure-connections-ssl...

Contributors