Configuring a zero trust tunnel on FortiAuthenticator
To configure a zero trust tunnel:
- Go to System > Network > Zero Trust Tunnels.
- Select Create New.
The Create New Zero Trust Tunnel window opens.
- In Name, enter a name for the zero trust tunnel.
- In URL, enter a URL specifying the IP/FQDN and port for the ZTNA server, e.g.,
https://fac.school.net:8443/
. - In the Client certificate dropdown, select a certificate.
This certificate is used to authenticate to the ZTNA server. In this example, it is generated by the FortiAuthenticator CA. See Server Certificate.
- Click OK.