1-877-SSL-SECURE


Live Chat

Login

en English
X

Select Language

Powered by Google TranslateTranslate
en Englishzh-CN 简体中文hi हिन्दीes Españolde Deutschar العربيةja 日本語it Italianoko 한국어fr Françaisnl Nederlandsiw עִבְרִיתel Ελληνικάcs Čeština‎id Bahasa Indonesiavi Tiếng Việtth ไทยga Gaeligehu Magyarsv Svenskada Danskfi Suomino Norsk bokmålet Eestiru Русскийbg Българскиpl Polskipt Portuguêstr Türkçeur اردو

We hope you will find the Google translation service helpful, but we don’t promise that Google’s translation will be accurate or complete. You should not rely on Google’s translation. English is the official language of our site.

  • Products

    SSL/TLS Certificates

    • Basic

    • Premium

    • High Assurance

    • Enterprise EV

    • Wildcard SSL/TLS

    • Multi-domain UCC/SAN

    • Enterprise EV UCC/SAN

    • Smart SeaL
    Overview
    Code Signing Certificates

    • Code Signing

    • EV Code Signing
    Email, Client, and Document Signing Certificates

    • Basic

    • Pro

    • Business
    Overview
    NAESB Certificates

    • NAESB Certificate
    Content Delivery Network (CDN)

    • Pro

    • Business

    • Enterprise
    Which Code Signing Certificate Do I Need?
    What is a CDN ?
  • Solutions

    Hosted PKI

    World-Class PKI Hosting Infrastructure

    Hosted PKI

    • World-class PKI hosting infrastructure
    • On-line management tools and API
    • Significant cost savings over private PKI

    Learn More

    Custom-Branded Issuing CA

    Issue Publicly-Trusted Certificates in your Company's Name

    Custom-Branded Issuing CA

    • Issue publicly-trusted certificates in your company's name
    • On-line management tools and API
    • Volume discounts

    Learn More

    Internet of Things (IoT)

    Custom IoT Solutions

    Internet of Things (IoT)

    • Custom IoT Solutions
    • Hosted PKI and branded subordinate CA
    • SSL Web Services (SWS) API

    Learn More

    Government

    Protect Personal Data While Providing Essential Services

    Government

    • Protect personal data while providing essential services
    • Trusted and preferred worldwide for SSL/TLS and other X.509 certificates
    • On-line management tools and API

    Learn More

    Energy Industry

    North American Energy Standards Board (NAESB) Accredited Certificate Authority

    Energy Industry

    • North American Energy Standards Board (NAESB) Accredited Certificate Authority
    • NAESB client certificates for energy-industry authentication
    • On-line management tools and API

    Learn More

    SSL Manager

    Windows Certificate Management Application

    SSL Manager

    • Order, install, and manage certificates from SSL.com
    • Free download
    • Works with YubiKey

    Learn More
    Submit a Ticket
    Call: 1-877-SSL-SECURE
    Live Chat
    Knowledgebase
  • Company
    ssllogolock

    About SSL.com

    Find out more about SSL.com,
    A Globally-Trusted Certificate Authority in business since 2002

    Blog

    Informative updates on SSL.com and PKI

    Careers

    Looking for a flexible environment that encourages creative thinking and rewards hard work?
    We're hiring!

    Privacy Policy

    • How we collect information about customers
    • How we use that information
    • Information-sharing policy

    Terms Of Service

    SSL.com's Terms of Service

    CA Repository

    • Practices Statement
    • Document Repository

    Submit a Ticket
    Call: 1-877-SSL-SECURE
    Live Chat
    Knowledgebase
  • Partners

    Overview

    Earn revenue by partnering with SSL.com

    Overview

    • Earn up to 25% commission on referrals
    • Reseller and volume purchasing program offers up to 65% wholesale discounts on certificates

    Learn More

    Referral Link Partners

    Hassle-Free Referral link program

    Referral Link Partners

    • Hassle-Free
    • Recurring income
    • Commission rates up to 25%
    • Free to join

    Signup!

    Reseller & Volume Purchasing Partners

    Wholesale and Reseller Solution

    Reseller & Volume Purchasing Partners

    • Wholesale Pricing: Discounts up to 65%
    • Complete Solution for Certificate Resellers
    • Easy API

    More Information
    Referral Link Program FAQ
    Reseller/Volume Purchasing Signup
  • Support

    What is SSL?

    SSL in plain English

    Play Video

    Knowledgebase

    • Detailed guides and how-tos
    • Frequently Asked Questions (FAQ)
    • Articles, videos, and more

    Purchase Orders and Quotes

    • How to Submit a Purchase Order (PO)
    • Request for Quote (RFQ)
    • Payment Methods
    • PO and RFQ Request Form

    Contact Us

    • Contact SSL.com sales and support
    • Document submittal and validation
    • Physical address

    Submit a Ticket
    Call SSL.com: 1-877-SSL-SECURE
    Live Chat
en English
X

Select Language

Powered by Google TranslateTranslate
en Englishzh-CN 简体中文hi हिन्दीes Españolde Deutschar العربيةja 日本語it Italianoko 한국어fr Françaisnl Nederlandsiw עִבְרִיתel Ελληνικάcs Čeština‎id Bahasa Indonesiavi Tiếng Việtth ไทยga Gaeligehu Magyarsv Svenskada Danskfi Suomino Norsk bokmålet Eestiru Русскийbg Българскиpl Polskipt Portuguêstr Türkçeur اردو

We hope you will find the Google translation service helpful, but we don’t promise that Google’s translation will be accurate or complete. You should not rely on Google’s translation. English is the official language of our site.

Facebook-f Twitter Youtube

Generate a CSR and Install an SSL/TLS Certificate on Fortigate SSL VPN

 

 

Time needed: 30 minutes.

This how-to will walk you through generating a certificate signing request (CSR) and installing an SSL/TLS certificate in Fortigate SSL VPN.

  1. Make sure that certificates are visible.

    By default, the Certificates option is hidden in the Fortigate GUI. To correct this, navigate to System > Feature Visibilty, make sure that Certificates is enabled, and click the Apply button.

  2. Open System > Certificates.

    Navigate to System > Certificates in the menu. If Certificates is not visible, see step 1, above.

  3. Click Generate.

    Click Generate to open the Generate Certificate Signing Request page.

  4. Configure CSR.

    • Enter a unique name for your certificate in the Certificate Name field.
    • Next to ID Type, select Domain Name and enter the domain name that the certificate is intended to protect.
    • You can enter further information to add to your CSR under Optional Information.
    • Set Key Type to RSA or Elliptic Curve depending on the type of key desired.
    • Set the Key Size. Note that 2048 bits or higher is preferable for RSA keys.
    • Set the Enrollment Method to File Based.
    • Click the OK button.

  5. Download CSR.

    The CSR will be added to the list of certificates with a status of PENDING. Select the CSR in the list and click Download to save the file.

  6. Order Certificate.

    The next step is to use the CSR to order an SSL/TLS certificate from SSL.com. For full information, please read our how-to on Ordering and Retrieving SSL Certificates.

  7. Download certificate.

    Open the certificate order in your SSL.com customer account and click the download link for Apache.
    Apache Download

  8. Unzip file.

    Unzip the downloaded zip file. You should have two .crt files: the end-entity SSL/TLS certificate and intermediate bundle (ca-bundle-client.crt).

  9. Login to Fortigate and open System > Certificates.

    Login to your Fortigate and navigate to System > Certificates in the menu.

  10. Import SSL/TLS certificate.

    Click Import > CA Certificate, browse to the SSL/TLS certificate, and click OK.

  11. Import intermediate certificates.

    Navigate to Import > CA Certificate, browse to the intermediate certificate bundle (ca-bundle-client.crt), and click OK.

  12. Configure Fortigate to use your new SSL/TLS certificate.

    Navigate to VPN > SSL > Settings, then select your SSL/TLS certificate from the Connection Settings section of the Server Certificate drop-down menu.

  13. Finished!

    You have configured your Fortigate SSL VPN to use your new SSL/TLS certificate.

Thank you for choosing SSL.com! If you have any questions, please contact us by email at Support@SSL.com, call 1-877-SSL-SECURE, or just click the chat link at the bottom right of this page. You can also find answers to many common support questions in our knowledgebase.

SSL Support Team

All Posts

Related How Tos

View All How Tos
Facebook Twitter Youtube Github

Subscribe to SSL.com’s Newsletter

What is SSL/TLS?

Play Video

Subscribe to SSL.com’s Newsletter

Don’t miss new articles and updates from SSL.com

certificates

support

programs

company

X
Cloud Signature Consortium Logo
Cloud Signature Consortium Logo


Facebook-f Twitter Youtube Github

Copyright © SSL.com 2020. All rights reserved.

Ssl seal 1 ev
Ssl seal 1 ev