I am trying to generate self signed certificate/key, using openssl (1.1.0h) and following procedure:
openssl genrsa -aes256 -out fgtssl.key 2048openssl req -new -key fgtssl.key -out fgtssl.csropenssl x509 -req -days 365 -in fgtssl.csr -signkey fgtssl.key -out fgtssl.crt When attempting to import into Fortigate (v6.0.3 build0200 KVM), getting "Incorrect certificate file key size for CA/LOCAL/REM" . I would like to configure IPSEC VPN dialup using own generated certificates.What is wrong with the certificate ? Martin.Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
IT turned to be licensing issue.
It works just as expected.
I'm using Fortigate VM evaluation version, is this a reason why I can't upload new certificate to the firewall?
it seems the problem related with eva license cause is stuck with this error in my lab and i'm sure my certificate and private key format is correct!
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1712 | |
1093 | |
752 | |
447 | |
231 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.