There is one thing you could perhaps try: See how the FMG behaves if you leave the ca-cert unset, if it even allows you to save the configuration without it. FortiGates used to behave like with server-identity-check=disable when the CA was not defined. Maybe FMG will behave like this as well. (I don't know)
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.