Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
ck8882
New Contributor II

Created on ‎10-08-2023 01:59 AM

FortiGate login wepage still show "not secure" in the address bar

HI 

 

Anyone have experience and idea how to configure and process generate CSR at FGT and sign by FAC for internal access in order the webpage won't show warning and address bar show "not secure" ?

 

I did try generate CSR in fortigate and signed by FAC. I did import the local CA from FAC to the end user devices. However, still see the warning and address bar show "not secure" 

 

Appreciate anyone could share the idea and the step i missing

 

I did refer link below as well

https://docs.fortinet.com/document/fortiauthenticator/6.5.0/cookbook/628126/fortiauthenticator-as-a-...

 

 

 

 

Labels:
2718
0 Kudos
2 Solutions
srajeswaran
Staff
Staff
In response to ck8882

Created on ‎10-09-2023 11:23 PM

https://docs.fortinet.com/document/fortigate/7.2.0/new-features/499047/new-default-certificate-for-h... This document confirms that if the SAN is not valid the browsers will give the error as you have observed.

Regards,
Suraj
- Have you found a solution? Then give your helper a "Kudos" and mark the solution.

View solution in original post

2529
ebilcari
Staff
Staff
In response to ck8882

Created on ‎10-10-2023 12:55 AM

Yes, SAN is added as a requirement on modern browser for every web page (not related to FGT only). You will still need to add the SAN even if you have specified the same domain as the common name.

- Emirjon
If you have found a solution, please like and accept it to make it easily accessible for others.

View solution in original post

2514
0 Kudos
13 REPLIES 13
dbu
Staff
Staff

Created on ‎10-08-2023 06:13 AM Edited on ‎10-08-2023 06:14 AM

Hi @ck8882 ,

Could you please share more, possibly a screenshot of the warning details. 

 

Regards!

Regards!
If you have found a solution, please like and accept it to make it easily accessible for others.
539
0 Kudos
ck8882
New Contributor II
In response to dbu

Created on ‎10-09-2023 12:59 AM

HI Dbu,

 

Please see the error screen below. According to the document link, i didn't configured the SAN value, would like to know is it required must configured SAN?

 

 

webpage error.JPG

457
0 Kudos
smayank
Staff
Staff

Created on ‎10-08-2023 08:11 PM

Hello

I request you to refer this video link to make it secure.

https://www.youtube.com/watch?v=gMWEH32L4aE\

Thanks  & Regards

Mayank Sharma

461
0 Kudos
ck8882
New Contributor II
In response to smayank

Created on ‎10-09-2023 01:06 AM

HI Smayank,

 

I have to sign the CSR by other side instead of use built-in self create cert.

 

Thanks

427
0 Kudos
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.