Hi
I have a requirement for a school where students should be able to download and install Fortigate SSL deep scanning certificate to their BYOD devices. Has anyone implemented SSL deep scanning for BYOD devices? if so, how did you enroll the Fortigate SSL deep scanning certificate to BYOD devices since they are not in domain?
Thanks
When I ran Fortigate's in K-12 BYOD environments we made the certificate available on a pinned topic of the School's Learning Management System (we used Moodle at the time) with instructions for Mac and PC.
At another School we invested in an MDM which allowed us to package up and distribute the certificate easily enough.
FortiConnect at another School allowed us to create a nice .exe package for the Certificate which was then installed as part of the on-boarding process
I submitted a New Feature Request during the 5.6 firmware beta period around theissue of simplifying the certificate deployment in BYOD environments, which i think was added to the NFR list but not sure if it made any traction internally?
Has anyone else got experience on this?
This isn't a super common deployment. I have only ever had one client do it and they took the manual route. Devices (especially iPhones) just give a really hard time on this.
Mike Pruett
so while they are not managed you need them to install the certificate itself.
Do you use any "Disclaimer" or Login Site for the students before they can access the Internet? Place a link with short instructions on this site where the People can download the certificate to install it.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.