Following this link -
https://docs.fortinet.com/document/fortiauthenticator/6.0.0/cookbook/812128/creating-a-local-ca-on-fortiauthenticator
I am a little confused, the cookbook suggests you have to create a user
certificate? i have over 500 LDAP user...
I am on 6.6.0, i created a new Policy and then was able to select cert,
so this option, purely looks at the cert and lets the user authenicate,
nothing else, whereas the other option does what? its the same thing?
Ah! OK, problem is, I don't have that screen on identity sources, on the
policy, I just have the option to pick a realm and nothing there like
your screen
Not sure I understand now, what bindings? you said as long as I have the
root CA cert on the FAC it will trust what is presented from the user?
wether its a machine cert or a user cert?