How can you change the SSL certificate presented by the SSO SP on port
7831? Changing it under the following places does not seem to work.
-User & Auth > SSO-User & Auth > Auth Settings > I'm using this though
an explicit proxy and it just continues ...
It sounds like you can extract the private key with the cli using "show
full", but you will need to know the password it was encrypted with to
reuse it.
https://community.fortinet.com/t5/Fortinet-Forum/FortiGate-SSL-Certification-Private-Key-Export/t...
You're welcome! Is there any way to make port 1003 reachable via the
explicit proxy using a local in policy rule? I think that could be a
potential short term work around to the issue.
Hi Anthony, Unfortunately, I just worked though that link and it does
not help. I've tried both self signed and publicly signed certificates
and none of them will show on connections to port 7831. They do work for
the regular captive portal. (not goi...