Hi all,
Currently all CAs in the TrustedCA list are trusted when doing ssl handshake inspection. Now I would like to remove the trust for certain CAs like "WoSign" and/or others systemwide / for ssl inspection.
I'm running FOS 5.6.1 and can't seem to find any option to do this. How can this be done?
Cheers,
germafab
Solved! Go to Solution.
Hello germafab,
This can only be done through the CLI. Here's how you do it:
config vpn certificate ca
edit <name> E.g. edit WoSign
set trusted disable
next
end
If you then check the Trusted CAs List, the certificates will not be there anymore. Hope this helps!
Homing
Hello germafab,
This can only be done through the CLI. Here's how you do it:
config vpn certificate ca
edit <name> E.g. edit WoSign
set trusted disable
next
end
If you then check the Trusted CAs List, the certificates will not be there anymore. Hope this helps!
Homing
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1735 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.