| Description | This article describes how to install Let’s Encrypt Certificate hosted domain in FortiWeb (Reverse Proxy Mode). |
| Scope | FortiWeb version 7.0 and later. |
| Solution |
Prerequisite: - The domain to install Letsencrypt cert must be pointed and mapped to the FortiWeb's Virtual IP that going to host the domain. - Port 80 should be publicly accessible so that Letsencrypt able to validate the domain ownership on the FortiWeb.(Refer to related document at end of article).
1) Add the new domain in Letsencrypt cert. Each subdomain must be created separately in order to install the Letsencrypt cert. In this example the testing domain is 'ft-dev.site'.
2) Create SNI and add the Letsencrypt cert into the Inline SNI.
3) Create and add the domain HTTP Content Routing Policy.
4) Under the 'Advanced SSL settings', check the option 'Enable Server Name Indication(SNI)' and select the created SNI policy.
5) Make sure the 'Redirect HTTP to HTTPS' is disabled.
6) Go back to the Letsencrypt Cert page and select the 'Issue' icon.
7) Wait 30 seconds and the certificate status shall turn 'ok'.
Related document: |
Unlock Exclusive Benefits
Join Our Community Today!
Join our community and post in the forum to earn your exclusive Spring Badge! Become a member today!
LOGIN/REGISTER
CONTINUE AS A GUEST
- Support Forum
- Knowledge Base
- Customer Service
- Internal Article Nominations
- FortiGate
- FortiClient
- FortiADC
- FortiAIOps
- FortiAnalyzer
- FortiAP
- FortiAuthenticator
- FortiBridge
- FortiCache
- FortiCarrier
- FortiCASB
- FortiConverter
- FortiCNP
- FortiDAST
- FortiDDoS
- FortiDB
- FortiDNS
- FortiDLP
- FortiDeceptor
- FortiDevSec
- FortiDirector
- FortiEdgeCloud
- FortiEDR
- FortiEndpoint
- FortiExtender
- FortiGate Cloud
- FortiGuard
- FortiGuest
- FortiHypervisor
- FortiInsight
- FortiIsolator
- FortiMail
- FortiManager
- FortiMonitor
- FortiNAC
- FortiNDR (on-premise)
- FortiNAC-F
- FortiNDRCloud
- FortiPAM
- FortiPhish
- FortiPresence
- FortiPortal
- FortiProxy
- FortiRecon
- FortiSRA
- FortiRecorder
- FortiSandbox
- FortiSASE
- FortiScan
- FortiSIEM
- FortiSOAR
- FortiSwitch
- FortiTester
- FortiToken
- FortiVoice
- FortiWAN
- FortiWeb
- FortiAppSec Cloud
- Lacework
- Wireless Controller
- RMA Information and Announcements
- FortiCloud Products
- ZTNA
- 4D Documents
- Customer Service
- Community Groups
- Blogs
FortiWeb
A FortiWeb can be configured to join a Security Fabric through the root or downstream FortiGate.
- Fortinet Community
- Knowledge Base
- FortiWeb
- Technical Tip: How to install Let's Encrypt SSL fo...
Options
- Subscribe to RSS Feed
- Mark as New
- Mark as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
Broad. Integrated. Automated.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Security Research
Company
News & Articles
Copyright 2025 Fortinet, Inc. All Rights Reserved.