Potential causes could be : 

1> You are using a deep certificate inspection policy ( SSL-SSH Profile) without a proper certificate. 

2> You are presenting your Fortigate certificate to the user, which might not be trusted in the client as the Root CA is not trusted or Fortigate has a self-signed certificate. 

Solution : Try removing the SSL profile or all UTM features from a particular policy and test the behavior. 

You might would like to visit below link if you want to get more details on certificate and SSL Profile. 

https://docs.fortinet.com/document/fortigate/5.4.0/cookbook/329138/preventing-certificate-warnings

An error message stating "This site's security certificate is not trusted" may indicate that your FortiGate firewall does not recognize or trust the security certificate for the website you are trying to access.

This error message could appear for a number of different reasons. The security certificate for the website may have expired or been issued by a Certificate Authority (CA) that is not recognised by your firewall. It's also conceivable that your firewall is preventing the SSL/TLS connection to the website for another reason.

If the padlock is visible in your web browser's address bar, you can accomplish verification by clicking on it to view the certificate's details. Verify the certificate's expiration date and that a reputable CA issued it.

You might need to modify your SSL/TLS inspection settings to enable the connection if your firewall is preventing the SSL/TLS connection to the website. For instructions on how to do this, consult the below documentation for your firewall.

SSL Inspection | FortiGate / FortiOS 6.2.5 (fortinet.com)