Hot!Fortigate certificate error

Author
orani
Bronze Member
  • Total Posts : 51
  • Scores: 1
  • Reward points: 0
  • Joined: 2019/07/11 12:54:18
  • Location: Athens
  • Status: offline
2019/07/25 02:45:18 (permalink)
0

Fortigate certificate error

I have a fortigate with default administrative settings.
 
http port 80
https port 443
certificate fortinet factory
 
I download the certificate and install it to the trusted root certificate authorities.
 
That worked fine for some time.
 
Some time later, when i try to connect to my fgt i receive the https error for an untrusted certificate. The certificate i had installed is still there, but it seems that the browser (any browser) does not "recognize" it.
 
#1

3 Replies Related Threads

    emnoc
    Expert Member
    • Total Posts : 5208
    • Scores: 339
    • Reward points: 0
    • Joined: 2008/03/20 13:30:33
    • Location: AUSTIN TX AREA
    • Status: offline
    Re: Fortigate certificate error 2019/08/14 06:45:50 (permalink)
    0
    Did you try curl IE FF Chrome?  You probably did not set trust it or allow the root CA if it's sign from something else.
     
    FWIW, We have a in-house PKI so all cert are signed by the  rootCA and distributed between devices internally, so cert signed by the privateCA is trusted
     
    Ken 

    PCNSE,  NSE , Forcepoint ,  StrongSwan Specialist
    #2
    orani
    Bronze Member
    • Total Posts : 51
    • Scores: 1
    • Reward points: 0
    • Joined: 2019/07/11 12:54:18
    • Location: Athens
    • Status: offline
    Re: Fortigate certificate error 2019/08/14 22:45:30 (permalink)
    0
    No i didn't try curl. Can you guide me through?
    #3
    emnoc
    Expert Member
    • Total Posts : 5208
    • Scores: 339
    • Reward points: 0
    • Joined: 2008/03/20 13:30:33
    • Location: AUSTIN TX AREA
    • Status: offline
    Re: Fortigate certificate error 2019/08/15 05:21:10 (permalink)
    0
    curl -v  https://hostname ( the name in the CN subject field )
     
    Install the certificate in curl trust store and see if you get a error. 
     

    PCNSE,  NSE , Forcepoint ,  StrongSwan Specialist
    #4
    Jump to:
    © 2019 APG vNext Commercial Version 5.5