Fortinet white logo
Fortinet white logo

Online Help

Create SSL/SSH Inspection Profile on FortiGate

Create SSL/SSH Inspection Profile on FortiGate

Secure Sockets Layer (SSL) content scanning and inspection enables web filtering and antivirus scanning in FortiGate. There are already pre-existing SSL profiles in FortiGate. However a custom SSL profile need to be used in preparation for the IPS Sensor creation.

  1. Log into FortiGate.
  2. Go to Security Profiles > SSL/SSH Inspection.
  3. Create a new SSL/SSH inspection profile called "deep-test".
  4. Keep the default configurations and scroll down to SSH Inspection Options.
  5. Turn on SSH deep scan.
  6. In Common Options > Invalid SSL certificates, click Allow.
  7. Click OK to finish.

Create SSL/SSH Inspection Profile on FortiGate

Create SSL/SSH Inspection Profile on FortiGate

Secure Sockets Layer (SSL) content scanning and inspection enables web filtering and antivirus scanning in FortiGate. There are already pre-existing SSL profiles in FortiGate. However a custom SSL profile need to be used in preparation for the IPS Sensor creation.

  1. Log into FortiGate.
  2. Go to Security Profiles > SSL/SSH Inspection.
  3. Create a new SSL/SSH inspection profile called "deep-test".
  4. Keep the default configurations and scroll down to SSH Inspection Options.
  5. Turn on SSH deep scan.
  6. In Common Options > Invalid SSL certificates, click Allow.
  7. Click OK to finish.