Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
fahadahmed
New Contributor

Created on ‎02-20-2017 12:04 AM

BYOD Users

Hello,

 

For Internal users which are already joined to Domain we can create policies with SSL Inspection and DPI. How about BYOD Users ?

 

How can we apply DPI SSL Inspection for BYOD users ?

3851
0 Kudos
2 REPLIES 2
MikePruett
Valued Contributor

Created on ‎02-20-2017 10:16 AM

You need to install the cert manually for them. 

Mike Pruett

Fortinet GURU | Fortinet Training Videos

Mike Pruett Fortinet GURU | Fortinet Training Videos
1501
0 Kudos
hmtay_FTNT
Staff
Staff

Created on ‎02-22-2017 01:19 PM

Hello,

 

Mike is correct that you would need to install the certificate manually for them if you are using a self-signed SSL Certificate (like the default FortiGate's one).

 

If you would like to do deep-inspection without installing a certificate manually, you need to get a properly signed SSL Certificate by an authorized Certificate Authority (CA). This will allow the BYOD devices to build a proper chain of trust to the Root CA. Once you get a properly signed SSL Certificate, import the private key and the Certificate to the FortiGate. You would not need to manually install the certificate in any BYOD devices this way.   

1501
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.