Re: cannot generate PCKS#12 from within Fortigate
Generating the CSR in the Fortigate means the key pairs located inside the Fortigate. you have to get the CSR and send it to the CA admin for issuing. this can be done with certreq -submit command for Microsoft CA. after the CA will sign the CSR the new certificate will be issue. Then you need to export it as a .cer of .der file and import it to the Fortigate. then you can select the certificate on your SSL inspection engine.