Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
fortinet-davidy
New Contributor

Access fortigate via http and https

Hi Please see the below config, which include http and https. why I can only access it via http instead of https? thanks

 

 

FG01 # sh system interface
config system interface
edit "port1"
set vdom "root"
set ip 192.168.1.221 255.255.255.0
set allowaccess ping https ssh http
set type physical
set snmp-index 1

2 Solutions
gfleming

You can just try using the factory cert. It should work. Please try:

 

config system global
  set auth-cert Fortinet_GUI_Server
end

 

More info here: https://docs.fortinet.com/document/fortigate/7.2.3/administration-guide/499047/using-the-default-cer...

 

You can also of course create your own certificate from your own PKI if you have one.

Cheers,
Graham

View solution in original post

pminarik

It's an unlicensed trial VM, isn't it?
If yes, that's how it should work. HTTP only.

 

HTTPS for admin GUI on trial VMs works only since the permanent trial VM change in 7.2.1. (link)

[ corrections always welcome ]

View solution in original post

15 REPLIES 15
fortinet-davidy

.

fortinet-davidy

Thanks! Please see the below. Is this version issue? 

 

fortinetdavidy_0-1674878976822.png

 

FG01 # get system status
Version: FortiGate-VM64-KVM v6.2.3,build1066,191219 (GA)

 

srajeswaran

I believe the issue is due to the SSL version, By default tls1.2 and tls1.3 are enabled, can ou add tls1.1 and test?

config system global

set admin-https-ssl-versions tlsv1-2 tlsv1-3 tlsv1-1 

end

 

 

Regards,

Suraj

- Have you found a solution? Then give your helper a "Kudos" and mark the solution.

pminarik

It's an unlicensed trial VM, isn't it?
If yes, that's how it should work. HTTP only.

 

HTTPS for admin GUI on trial VMs works only since the permanent trial VM change in 7.2.1. (link)

[ corrections always welcome ]
fortinet-davidy

Yes you are right. this is vm version

 

the below command cannot work.

config system global

set admin-https-ssl-versions tlsv1-2 tlsv1-3 tlsv1-1 

fortinet-davidy

Thanks all. 

Labels
Top Kudoed Authors