How to Install an SSL Certificate in FortiGate?

1 Star2 Stars3 Stars4 Stars5 Stars (2 votes, average: 5.00 out of 5)
Loading...

Step-by-step Guide to Install An SSL Certificate in FortiGate

This article will help you understand how to install an SSL certificate in FortiGate, a top-rated firewall from Fortinet.
fortinet-lock-image
This process involves four steps.

Step 1: Purchase an SSL certificate

The first step in the process is purchasing an SSL certificate from a Certificate Authority. The second step is generating a CSR.

95%
OFF

comodo-square-logo

Comodo Positive SSL

$6.55

Vendor Price: $41.73

Coupon Code: ASCSCPSSL4

Get It Now

78%
OFF

rapidssl-coupon-square-logo

RapidSSL Certificate

$13.45

Vendor Price: $69

Coupon Code: ASRSRSSL2

Get It Now

95%
OFF

comodo-square-logo

Comodo PositiveSSL Multi-Domain

$17.54 – 2 SAN Included

Vendor Price: $41.73

Coupon Code: ASCSCPMD4

Get It Now

Step 2: Generate a Certificate Signing Request (CSR)

The certificate authority will give you a CSR when you apply for an SSL certificate, which includes information that will be included in the SSL certificate like the name of your organization, domain name, country, locality, etc. The private key will also be generated when the CSR is generated. This CSR will be used to create your SSL certificate. If you do not have a CSR, you will not be able to move on to the next step.

To generate a CSR on FortiGate, you will have to login to your FortiGate management console and generate your CSR.

Step 3: Install SSL Certificate on FortiGate

Once you receive your signed SSL certificate from the CA, you can download the folder and extract the SSL files and save them on your system. As you have generated the CSR on FortiGate, your private key will be there on the FortiGate server.

First, prepare your primary and intermediate certificates. Copy the contents of the primary and intermediate certificates including the BEGIN and END tags into Notepad files and save them with .crt extension. Here are the steps involved in the FortiGate SSL installation process.

Import Signed Certificate to Your FortiGate

  • Log into the FortiGate dashboard
  • From the Import dropdown, select Local Certificate
  • Browse to the path of your primary certificate
  • Click OK
(Now the status of your certificate will change from Pending to OK.)

Import Your Intermediate CA

  • Navigate to System > Certificates
  • Select CA certificate from the Import menu
  • Now, browse the path where you have saved your intermediate certificate
  • Click OK
(Now, your intermediate CA will be in the Certificates list.)

Step 4: Configure FortiGate

  • Login to FortiGate and select VPN > SSL > Settings
  • Select the SSL certificate you just installed in the Connection Settings in the Server Certificate drop-down
  • Click Apply
You have now successfully imported your SSL certificate on FortiGate VPN.

You can check whether your FortiGate SSL installation is successful by using an online SSL checker tool.

Related Articles:

Download Site Seal
comodo-trust-seal
SSL Checker