Import a certificate
Signed local certificates can be imported to the FortiCache unit.
To import a certificate:
- From the local certificates list, select Import. The Import Certificate page opens.
- Select the Type from the drop-down list:
- Local Certificate: If the Type is Local Certificate, select Choose File and locate the certificate file on your computer.
If the Type is PKCS #12 Certificate, select Choose File and locate the certificate with key file on your computer. Enter the password into the Password field.
If the Type is Certificate, select Choose File and locate the certificate file on your computer. Select Choose File and locate the key file on your computer. Enter the password into the Password field.
- Remote Certificate: Select Choose File and locate the remote certificate file on your computer.
- CA Certificate: Select SCEP (Simple Certificate Enrollment Protocol) and enter the URLof the SCEP, or select Local PC > Choose File and locate the certificate file on your computer.
- CRL: Select HTTP and enter the URL of the HTTP server.
Select LDAP and choose the LDAP server from the dropdown menu.
Select SCEP and choose the certificate from the dropdown menu or enter the URL of the SCEP server.
Select Local PC > Choose File and locate the certificate file on your computer.
Select OK to import the certificate.
View certificate details
Certificate details can be viewed by selecting a certificate, then selecting View Details from the toolbar.
The following information is displayed:
Certificate Name | The name of the certificate. |
Serial Number | The serial number of the certificate. |
Subject Information | The subject information of the certificate, including:
l Common Name (CN) l Organization (O) l Organization Unit (OU) l Locality (L) l State (ST) l Country (C) l Email Address |
Issuer | The issuer information of the certificate, including most information from Subject Information. |
Validity Period | Displays the Valid From and the expiry Valid To date of the certificate. The certificate should be renewed before this expiry date. |
Fingerprints | The identifying fingerprint of the certificate. |
Extension | The certificate extension information. |
Select Close to return to the certificate list.
Certificates
These remote certificates are public certificates without private keys.
They can be deleted, imported, and downloaded, and their details can be viewed in the same way as local certificates.
External CA Certificates
External CA certificates are similar to local certificates, except they apply to a broader range of addresses or to whole company. A CA certificate would be issued for an entire web domain, instead just a single web page.
External CA certificates can be deleted, downloaded, and their details can be viewed, in the same way as local certificates.