Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
qnpf943h
New Contributor

Created on ‎09-04-2024 01:40 AM Edited on ‎09-04-2024 02:06 AM

Cannot choose any imported certificate for https server

I have successfully imported my certificate which is signed by my CA. 

The problem is I cannot choose it as HTTP server certificate. I see only two options, even though I have many more certificates in System -> Settings -> Certificates

Screenshot from 2024-09-04 11-37-44.png

I 've tried also via command line but again I only see these two options.

Thanks in advance.

 

Edit: I have also imported both Root CA and Sub CA certificates.

Labels:
640
0 Kudos
1 Solution
ozkanaltas
Valued Contributor III
In response to qnpf943h

Created on ‎09-04-2024 02:17 AM

Hello @qnpf943h ,

 

This is interesting. Maybe Fortigate is not showing this because of the type of certificate you created. You created a web server certificate, right?

If you have found a solution, please like and accept it to make it easily accessible to others.
NSE 4-5-6-7 OT Sec - ENT FW

View solution in original post

If you have found a solution, please like and accept it to make it easily accessible to others.NSE 4-5-6-7 OT Sec - ENT FW
619
3 REPLIES 3
ozkanaltas
Valued Contributor III

Created on ‎09-04-2024 01:58 AM

Hello @qnpf943h ,

 

If you just upload the .cer file to FortiGate, this will not be enough. You need to install certificate as .cer and .key file or pkcs12 format. You can export the certificate on pkcs12 format(pfx) from your local CA. 

 

https://community.fortinet.com/t5/FortiGate/Technical-Tip-FortiGate-HTTPS-SSL-Certificate-Installati...

 

If you have found a solution, please like and accept it to make it easily accessible to others.
NSE 4-5-6-7 OT Sec - ENT FW
If you have found a solution, please like and accept it to make it easily accessible to others.NSE 4-5-6-7 OT Sec - ENT FW
635
qnpf943h
New Contributor
In response to ozkanaltas

Created on ‎09-04-2024 02:04 AM

No, I imported the .pfx file that includes the private key but still can't see it as option.

 

I also tried to export the private key and fullchain cert in .pem format and import this pair. The import was successful but still can't select it as https server cert.

631
0 Kudos
ozkanaltas
Valued Contributor III
In response to qnpf943h

Created on ‎09-04-2024 02:17 AM

Hello @qnpf943h ,

 

This is interesting. Maybe Fortigate is not showing this because of the type of certificate you created. You created a web server certificate, right?

If you have found a solution, please like and accept it to make it easily accessible to others.
NSE 4-5-6-7 OT Sec - ENT FW
If you have found a solution, please like and accept it to make it easily accessible to others.NSE 4-5-6-7 OT Sec - ENT FW
620
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.