Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
random_guy
New Contributor III

Move Cert to other VDOM

I have a cert for an SSL VPN in one VDOM and would like to copy it to another VDOM for a different SSL VPN. I need to keep both VPNs running for about a month. Is there a way to do this or do I just have to purchase a new cert? 

 

Thanks!

1 Solution
random_guy
New Contributor III

5 REPLIES 5
ryan_www
New Contributor III

I think it might be possible to download it and then upload it to the other VDOM or the Global VDOM from System Certificates.  Have you tried that?

random_guy
New Contributor III

The upload fails. I assume because the private key was generated in the other VDOM and isn't shared between. 

ryan_www
New Contributor III

Oh bummer, yeah that makes sense.  Hopefully someone else will have another idea.

ryan_www
New Contributor III

It sounds like you can extract the private key with the cli using "show full", but you will need to know the password it was encrypted with to reuse it.  

 

https://community.fortinet.com/t5/Fortinet-Forum/FortiGate-SSL-Certification-Private-Key-Export/td-p...

random_guy
New Contributor III

Labels
Top Kudoed Authors