Import the SSL certificate into FortiOS
To import the certificate to FortiOS- web-based manager
- Go to System > Certificates.
- Select Import > Local Certificate.
- Select Certificate for Type.
Fields for Certificate file, Key file, and Password are displayed.
- For Certificate file, enter c:\OpenSSL-Win32\bin\fgtssl.crt.
- For Key file, enter c:\OpenSSL-Win32\bin\fgtssl.key.
- For Password, enter the PEM Pass Phrase you entered, such as fortinet.
- Select OK.
The SSL certificate you just uploaded can be found under System > Certificates under the name of the file you uploaded — fgtssl.
Example — Generate an SSL certificate in
To confirm the certificate is uploaded properly – CLI:
config vpn certificate local edit fgtssl get
end
The get command will display all the certificate’s information. If it is not there or the information is not correct, you will need to remove the corrupted certificate (if it is there) and upload it again from your PC.
To use the new SSL certificate – CLI
config vpn ssl settings set servercert fgtssl
end
This assigns the fgtssl certificate as the SSL server certificate. For more information see the FortiOS Handbook SSL VPN guide.