Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
epacke
New Contributor II

Usage of HSM

Hi!

Is it possible to store the keys for intercepting TLS sessions in the Web Filter with an HSM device? I looked at the manuals and only found references to the FortiADC.

 

If it is possible would you mind answering these questions?

[ul]
  • Is the key transaction made once per TLS session, or at machine startup?
  • Would you recommend against having a HSM centrally and connecting to it over the internet?[/ul]

    Is there any other ways to protect the keys in remote locations?

     

    Any reply is most appreciated!

     

    Kind regards,

    Patrik

  • 1 REPLY 1
    Gebster
    New Contributor

    Yes, see Securosys HSM or the Securosys CloudsHSM:

     

    https://docs.securosys.com/fortigate/overview

    Announcements

    Select Forum Responses to become Knowledge Articles!

    Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

    Labels
    Top Kudoed Authors