I'm newer to fortigates and was setting up ssl certs which got me
wondering about the device hostname and a few related questions. I see
the field in the settings page to define the hostname. (1) Should that
hostname be the full fqdn that would resol...
has anyone tested the new LE ACME client to see if it is functional with
the built-in DDNS function of fortigate where the device has a dns name
of [customname].fortiddns.com ? I tried it and am getting:"detail":
"Contacting ACME server for [customna...
well I answered one of the questions on my own... (1) The hostname
should NOT be the fqdn... I got impatient and just figured I'd try it to
see what happened and the GUI would not let you enter a ".", so that
answers that question.
I can't talk about the specific issue, but I assume you do not own
pm.net ... either use a domain that you own and can direct the
nameserver address to your firewall or use a .local domain. trying to
use pm.net is only going to lead to strange issues...
I think this would be more of an organizational policy question and how
paranoid you want to be. The FSSO agent runs with the service level of
the account you give to it, so as long as you lock that account down to
whatever level you desire, you shou...