Help
FortiWeb
A FortiWeb can be configured to join a Security Fabric through the root or downstream FortiGate.
AACastillo
Staff
Staff

Created on ‎11-19-2024 09:43 PM Edited on ‎11-19-2024 09:44 PM By Community Manager

Article Id 358732

Technical Tip: Server policy's certificate is in grey and can't be changed or modified in the FortiWeb GUI.

Description This article indicates why FortiWeb's server policy shows its certificate (and also its intermediate certificate) in grey and cannot be modified in the FortiWeb GUI.
Solution

In a server policy configuration, the policy's certificate configuration (and also its intermediate certificate) could appear in grey, not being able to be changed or modified. No matter if the server policy is a Single Server/Server Balance:


01a.png

 

Or the policy is an HTTP Content Routing Policy:


02a.png

 

This situation happens because 'Enable Strict SNI' is enabled; to check this, select Advanced SSL settings. An SNI Policy should be configured.


03a.png

 

Important:

If the server policy is in production, it is very important to be clear if the SNI policy is being used by this policy. Disabling this setting could affect the HTTPS access of all the published web sites configured in this server policy.

 

To enable again the server policy certificate, disable 'Enable Strict SNI' and select 'OK'.


04a.png

 

The policy's certificate and intermediate certificate will be enabled to be configured in the FortiWeb's GUI.


06a.png
101
0 Kudos
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.