Hi
We are running version 6.2.3 on a fortigate 301E
I want to use a different SSL certificate on an existing SSL inspection policy to only inspect the headers , not full inspection.
I have created the csr on the FG, got it signed by our trusted subca and imported it back into the FG as a local certificate successfully. It is now sitting in the FG cert store under local certificates.
When i select
security profiles
SSH / SSL Inspection and select an existing profile , the settings are
Multiple clients connecting to multiple servers
SSL Certificate Inspection
In the CA certificate dropdown my new certificate does not appear in the list.
When i try and create a new one then upload it states the certificate already exists which it does.
Does anybody have an idea why the new certificate is not showing in the drop down
many thanks in advance
mac
Solved! Go to Solution.
perhaps because you uploaded a regular certificate and not a (sub) CA certificate, is that possible?
anyway for certificate inspection you don't need to upload a certificate, so why do this?
perhaps because you uploaded a regular certificate and not a (sub) CA certificate, is that possible?
anyway for certificate inspection you don't need to upload a certificate, so why do this?
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1737 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.