Hello,
I'm trying to do a local lab by using Authentik as an IDP to establish sso login on Fortigate admin web interface.
I'm using Fortigate VM (FGT_VM64-v7.6.0)
I'm following this official Authentik tutorial: https://docs.goauthentik.io/integrations/services/fortigate-admin/
I downloaded two Authentik Self-signed certificate including certificate file and private key file (.pem extension). When I upload/import these files then it said "Incorrect certificate file key size for CA/LOCAL/REMOTE cert.". Can anyone explain and help me fix this issue? Thank you.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hello @forsenGa ,
Normally only the certificate is sufficient for SAML configuration. Can you just upload the certificate file to FortiGate and use it in the SAML configuration? it will work like this.
The key file field is required so I can't submit the Certficate file only
Hello @forsenGa ,
Can you try installing it as a CA certificate instead of a local certificate? There it should only ask for a certificate.
Trial/unlicensed VMs have severe crypto restrictions, including certificate key size. This is an expected symptom of that.
If I remember correctly, this might work if you go down to 512bit RSA key.
For proper testing of anything crypto-related (SSL-VPN, IPsec, UTM inspection), use a full VM license, time-limited evaluation license, or a hardware unit.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1529 | |
1027 | |
749 | |
443 | |
209 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.