In this case the FGT is the Webserver and FMG is the client. On web server you have to generate a CSR singed to the Root CA in this case FAC and then you need to install the Cert singed by the FAC into FGT. On the other hand the client FMG should have Root CA installed in order to validate the FGT server certificate.
- Happy to help, hit like and accept the solution -
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.