Hi, i have created an openssl certificate and successfully imported to fortigate then downloaded the selfsigned certificate and imported to my machine. I want to introduce the two factor security i.e. load a certificate onto each of the clients that are connecting to the Fortigate. I have selected the option ' Require Client Certificate' but am not sure what Certificate to use? appreciate your cooperate and feedback regarding how to add certificate to be selected from the client certificate in forticlient tool. attached FYR..
thank you
Hussien Idris
NSE4, NSE5 & NSE7
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Good now here's a few things to check out
[ul]
Use windows prompt certmgr.msc and validate the above and storage. And restart the forticlient.
PCNSE
NSE
StrongSwan
Hi,
Just thought I'd post to say I've managed to get everything working now. Stumbled across this post and followed instructions and now all is well.
thanks for your help emnoc
theG
Did you get this figured out? Do you understand PKI and how a CA behaves?
FG200D 5.6.5 (HA) - primary [size="1"]FWF50B' s 4.3.x, FG60D's 5.2.x, FG60E's 5.4.x [Did my post help you? Please rate my post.][/size] FAZ-VM 5.6.5 | Fortimail 5.3.11 Network+, Security+
Hi,
I'm also having this same issue. I've managed to get Forticlient working on Android + IOS devices with the same certificate also generated from OpenSSL, but not windows based device because it's not showing the certificate...
Anyone out there have a working solution on how to get the certificate to show up in Forticlient for windows?
G
1st question, what type or format is the certificate in pem or pkcs12? You will need to have probably convert the certificate into pkcs12 ( aka p12 ) and you can do that via a openline convertor or via openssl
openssl pkcs12 -export -inkey < the key file > -in < the certificate file > -out < the new pkcs filename>
Than import the new pkcs file via the windows certificate manager.
PCNSE
NSE
StrongSwan
Hi Emnoc,
The format is already pkcs12 / p12. Imported into "user account" and "local" personal and trusted folders, but still not showing up in Forticlient dropdown...
Good now here's a few things to check out
[ul]
Use windows prompt certmgr.msc and validate the above and storage. And restart the forticlient.
PCNSE
NSE
StrongSwan
Hi,
Just thought I'd post to say I've managed to get everything working now. Stumbled across this post and followed instructions and now all is well.
thanks for your help emnoc
theG
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1660 | |
1073 | |
752 | |
443 | |
220 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.