Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
LarW63
New Contributor III

Policy Install Failed - Input is not a valid CA certificate

Hi,

 

We have an extensive environment consisting of multiple FG-60E, FG-200D and FG-200E firewalls, all managed with Fortimanager.  The FMG is running v5.6.7 and we are in the process of upgrading the FGs from v5.4.x to v5.6.7.

 

We just introduced an FG-30E into the environment.  When we try to push policy from FMG to the FG-30E, it fails on the following:

 

config vpn certificate ca

edit Initial_Internal_CA

set ca "-----BEGIN CERTIFICATE-----

  ...

-----END CERTIFICATE-----"

Input is not a valid CA certificate.

 

We're not sure where this is coming from, nor why it's failing.  I checked one of our FG-60Es and the Initial_Internal_CA actually exists in the config.  Checking an FG-200E it does not exist.

 

The Device and Policy package has been deleted and readded without any difference.

 

Has anyone experienced this before?  Any suggestions?

 

Thank you for your time.

 

LarW63

0 REPLIES 0
Labels
Top Kudoed Authors