Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
moseiz
New Contributor II

Created on ‎11-17-2024 08:51 AM

cannot import certificate in FortiAnalyzer

my FortiAnalyzer  https certicate expired. got a wildcard ssl for my domain from sectigo. when i import it in analyzer it fails with its already imported but i cannot see it on the list of certificates. my analyzer vm was on version 7.4.5, updated to 7.6.1 and its the same behaviour

Labels:
596
0 Kudos
1 REPLY 1
abelio
SuperUser
SuperUser

Created on ‎11-18-2024 05:31 AM Edited on ‎11-18-2024 05:49 AM

Hello moseiz

Let's assume that you didn't generate a CSR file from your FAZ directly and gave to Sectigo's CA to sign it. If so, you have your private key somewhere safe.

The easiest way to import a certificate signed by an external CA is importing it as a PFX container (that includes keys, and your and CA certificates) .
Go to Import Local Certificate > Type PKCS#12 Certificate , add your pre-built pfx 
You' ll also need import Sectigo CA chain certificate if needed.


(*) Sectigo and other comercial CA's provides just a .pem certificate and its own CA certificate (or certificate chain used to sign your certificate); in order to build PFX container , you can use any online tool or  better , use openssl commands in your station

 

 

regards




/ Abel

regards / Abel
543
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.