Fortigate and ACME

1mm · ‎10-18-2023

Hello,

We have deployed Fortigate in Azure, we have configured fortivpn for remote access vpn. We use letsencrypt certificate for VPN. This certificate should renew automatically because we use ACME.

https://docs.fortinet.com/document/fortigate/7.0.0/new-features/822087/acme-certificate-support#:~:t....

For some reasons I would like to change ACME interface on my fortigate, but I cant:

how I can change interface?

Dannу · ‎10-18-2023

Did you already try to change it via CLI?

config system acme

mle2802 · ‎10-18-2023

Hi @1mm,

Can you try the following command instead

config system acme
    set interface port1
end

Regards,
Minh

1mm · ‎10-18-2023

Hello, will try and let you know. Thanks.

hbac · ‎10-18-2023

Hi @1mm,

Please make sure that 'Redirect HTTP to SSL-VPN' is not enabled under SSL-VPN settings and make sure port 443 and 80 are not being used for GUI access or VIPs. Refer document for more information on ACME : https://docs.fortinet.com/document/fortigate/7.2.4/administration-guide/822087/automatically-provisi...

Regards,

1mm · ‎10-18-2023

Hello @hbac, thanks for your reply.

There are no any VIPs, just SSL vpn running on 443 port.

Fortigate and ACME

Nominate a Forum Post for Knowledge Article Creation

You are leaving our website