Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
SimoSimo77
New Contributor

Created on ‎12-02-2025 08:15 AM

FortiAuthentication GUI keep use the old HTTPS Certificate

Hello,

 

My FortiAuthenticator HTTPS certificate is close to expiring. I generated a new certificate with the same configuration and imported it through the Local Services console. The old certificate was automatically replaced by the new one, but I can see that the Web GUI is still using the old certificate.

 

I cleaned the browser cache, i tried with the incognito browser mode but nothing works, i also waiting for one but still use the old certificate.

 

I would also like to know whether this certificate has any impact on EAP WiFi authentication or any other FortiAuthenticator components.

 

Thank you.

Labels:
109
0 Kudos
6 REPLIES 6
funkylicious
SuperUser
SuperUser

Created on ‎12-02-2025 10:06 AM

hi,

try diagnose web restart

"jack of all trades, master of none"
"jack of all trades, master of none"
93
0 Kudos
SimoSimo77
New Contributor
In response to funkylicious

Created on ‎12-02-2025 11:58 PM

Hi @funkylicious,

 

I will give a try, thank you.

47
0 Kudos
kaholpa3
New Contributor

Created on ‎12-02-2025 11:58 AM

Same message in FireFox "Unable to Connect". I can ping the DMZ interface IP. I never set an allow list. If I go to config system admin, edit admin, get. All trustedhost entries are 0.0.0.0 0.0.0.0

87
0 Kudos
AEK
SuperUser
SuperUser

Created on ‎12-02-2025 01:11 PM

Hi Simo

Which FAC version?

Did you select the GUI certificate from the below location? If not then redo from the below location and validate.

 

fac_cert.png

 

 
AEK
AEK
79
0 Kudos
SimoSimo77
New Contributor
In response to AEK

Created on ‎12-03-2025 12:06 AM

Hi @AEK 

 

 

We are using FAC v6.4.1.

 

The certificate was already selected, and I also tried re-applying the same settings, but it didn’t fix the issue.

 

I performed a test on version 6.6.7, and in that version the certificate was switched instantly without any problem.



fac.png

 

 

46
0 Kudos
AEK
SuperUser
SuperUser
In response to SimoSimo77

Created on ‎12-03-2025 12:52 AM

Hello Simo

6.4.1 is not mature and has many known issues.

If you want to stay at 6.4.x then I recommend to update to 6.4.10. You can update it directly according to upgrade path.

https://docs.fortinet.com/document/fortiauthenticator/6.4.10/release-notes/859240/upgrade-instructio...

Hope it helps.

AEK
AEK
37
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.