- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
ACME certificate showing not secure
Followed the manual from this post: https://community.fortinet.com/t5/FortiGate/Technical-Tip-ACME-certificate-showing-not-secure/ta-p/1...
I Cannot find a way to forcing the letsencrypt certificate to be renewed with the correct url.
The post itself is correct, but needs some more steps..
Solved! Go to Solution.
- Labels:
-
FortiGate
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Solution is to create the cert from the CLI instead of the gui
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
What error do you get?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
The browser states that the certificate is not legit (thats correct because it's still a staging certificate):
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
in that case you have not adjusted "set acme-url" to the production URL
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Seems correct, but do i need to run a command to re request the certificate with the new acme-url ?
config vpn certificate local
edit "Test"
set password ENC hash
set comments "Renewed with ACME on Wed Jan 12 10:46:58 2022 (UTC)"
set range global
set enroll-protocol acme2
set acme-ca-url "https://acme-v01.api.letsencrypt.org/directory"
set acme-domain "*"
set acme-email "*"
set acme-renew-window 1
next
end
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Thank you for sharing the solution!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Solution is to create the cert from the CLI instead of the gui