my FortiAnalyzer https certicate expired. got a wildcard ssl for my domain from sectigo. when i import it in analyzer it fails with its already imported but i cannot see it on the list of certificates. my analyzer vm was on version 7.4.5, updated to 7.6.1 and its the same behaviour
Hello moseiz
Let's assume that you didn't generate a CSR file from your FAZ directly and gave to Sectigo's CA to sign it. If so, you have your private key somewhere safe.
The easiest way to import a certificate signed by an external CA is importing it as a PFX container (that includes keys, and your and CA certificates) .
Go to Import Local Certificate > Type PKCS#12 Certificate , add your pre-built pfx
You' ll also need import Sectigo CA chain certificate if needed.
(*) Sectigo and other comercial CA's provides just a .pem certificate and its own CA certificate (or certificate chain used to sign your certificate); in order to build PFX container , you can use any online tool or better , use openssl commands in your station
regards
/ Abel
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1740 | |
1108 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.