Get your FREE copy of "The Ultimate Guide of SSL"

Download Ebook

How to Install an SSL Certificate in FortiGate?

Step-by-step Guide to Install SSL Certificate in FortiGate

This article will help you understand how to install an SSL certificate in FortiGate, a top-rated firewall from Fortinet.
This process involves four steps.

Step 1: Purchase an SSL certificate

The first step in the process is purchasing an SSL certificate from a Certificate Authority. The second step is generating a CSR.

Step 2: Generate a Certificate Signing Request (CSR)

The certificate authority will give you a CSR when you apply for an SSL certificate, which includes information that will be included in the SSL certificate like the name of your organization, domain name, country, locality, etc. The private key will also be generated when the CSR is generated. This CSR will be used to create your SSL certificate. If you do not have a CSR, you will not be able to move on to the next step.

To generate a CSR on FortiGate, you will have to login to your FortiGate management console and generate your CSR.

Step 3: Install SSL Certificate on FortiGate

Once you receive your signed SSL certificate from the CA, you can download the folder and extract the SSL files and save them on your system. As you have generated the CSR on FortiGate, your private key will be there on the FortiGate server.

First, prepare your primary and intermediate certificates. Copy the contents of the primary and intermediate certificates including the BEGIN and END tags into Notepad files and save them with .crt extension. Here are the steps involved in the FortiGate SSL installation process.

Import Signed Certificate to Your FortiGate

  • Log into the FortiGate dashboard
  • From the Import dropdown, select Local Certificate
  • Browse to the path of your primary certificate
  • Click OK
(Now the status of your certificate will change from Pending to OK.)

Import Your Intermediate CA

  • Navigate to System > Certificates
  • Select CA certificate from the Import menu
  • Now, browse the path where you have saved your intermediate certificate
  • Click OK
(Now, your intermediate CA will be in the Certificates list.)

Step 4: Configure FortiGate

  • Login to FortiGate and select VPN > SSL > Settings
  • Select the SSL certificate you just installed in the Connection Settings in the Server Certificate drop-down
  • Click Apply
You have now successfully imported your SSL certificate on FortiGate VPN (Fortinet firewall). You can check whether your FortiGate SSL installation is successful by using an online SSL checker tool.

Related Articles:



Comodo Positive SSL


Vendor Price: $41.73

Coupon Code: ASCSCPSSL4

Get It Now



RapidSSL Certificate


Vendor Price: $69

Coupon Code: ASRSRSSL2

Get It Now



Comodo PositiveSSL Multi-Domain

$17.54 – 2 SAN Included

Vendor Price: $41.73

Coupon Code: ASCSCPMD4

Get It Now

Disclosure: AboutSSL appreciates your continuous support. It helps us tremendously to keep moving in the competitive SSL industry. Here most of the links which direct you to buy any SSL/TLS related service or products earns us a certain percentage of referral commission. Learn More