Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
vitor_ribeiro
New Contributor

Created on ‎05-15-2015 07:56 AM

SSL Inspection Valid CA Certificate

Hi,

 

Simple question: Which type of Certificate should i request to the CA for SSL Inspection ?

 

Thanks

3142
0 Kudos
3 REPLIES 3
Bromont_FTNT
Staff
Staff

Created on ‎05-15-2015 07:59 AM

 

A public CA won't give you the type of certificate you need.

 

If you have a domain environment your best bet would be to have the DC issue the certificate. IE and Chrome on domain member workstations will trust it.

1717
0 Kudos
vitor_ribeiro
New Contributor

Created on ‎05-15-2015 08:02 AM

 

So there is no way to generate a CSR and send to a VeriSign ?

 

So i have to install on each workstation a certificate  ??

1717
0 Kudos
Rafael_Freire
New Contributor II
In response to vitor_ribeiro

Created on ‎05-18-2015 04:17 AM

vitor.ribeiro wrote:

 

So there is no way to generate a CSR and send to a VeriSign ?

 

So i have to install on each workstation a certificate  ??

Yes , to inspect the ssl traffic you will need to install certificates on the endpoints. I think a interesting way is generate a certificate on your DC and upload with GPO on the machines.

1717
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.