Certificate based Authentification
I'm currently working on establishing a site-to-site-VPN connection using the IPSec protocol and two Fortigate-Firewalls.
Got my certificate based authentification working, using those instructions:https://docs.fortinet.com/document/fortigate/5.6.0/cookbook/850466/obtaining-the-necessary-certificates
Now my question is: w
Why do I need two
CA-Certificates to establish the VPN connection?
Would this also work if I only had one CA-Certificate, that would sign both of the client/firewall-certificates?
Thanks in advance,