Fortinet black logo

Online Help

Home FortiConverter Service 23.1.0 Online Help

Import Certificate

23.1.0
23.1.0
Copy Link
Copy Doc ID dc7719fd-c5d8-11ed-8e6d-fa163e15d75b:273277

Import Certificate

Background

Certificates can be migrated and imported in most cases, but with a few exceptions. If a certificate cannot be imported, it will be replaced by the default certificate in the migrated config. When this happens, the certificate will need to be imported manually.

Wait until the migrated config is restored on the device, then follow the steps below to import the certificate manually:

Steps to import the signed certificate into your FortiGate:

Before importing the certificate, please prepare either your certificate (.crt) and private key (.key), or the PKCS#12 certificate (.pfx).

  1. Log in to your FortiGate unit and go to System > Certificates.

    2. If there’s no Certificates, please click Feature Visibility and enable the Certificates.

  2. Click Import > Local Certificate.
  3. Upload the local certificate file and private key, then click OK.

    4. If you use a password to encrypt the certificate file, please fill the password as well.

  4. The certificate will be added and the status of the certificate will change from PENDING to OK.
FortiGate provides the capability to download the certificate. However, for security reasons, the private key encrypted in FortiGate cannot be accessed. To successfully restore the private key, you need to find the matched origin key to import the certificate to another FortiGate device.

Previous
Next

Import Certificate

Background

Certificates can be migrated and imported in most cases, but with a few exceptions. If a certificate cannot be imported, it will be replaced by the default certificate in the migrated config. When this happens, the certificate will need to be imported manually.

Wait until the migrated config is restored on the device, then follow the steps below to import the certificate manually:

Steps to import the signed certificate into your FortiGate:

Before importing the certificate, please prepare either your certificate (.crt) and private key (.key), or the PKCS#12 certificate (.pfx).

  1. Log in to your FortiGate unit and go to System > Certificates.

    2. If there’s no Certificates, please click Feature Visibility and enable the Certificates.

  2. Click Import > Local Certificate.
  3. Upload the local certificate file and private key, then click OK.

    4. If you use a password to encrypt the certificate file, please fill the password as well.

  4. The certificate will be added and the status of the certificate will change from PENDING to OK.
FortiGate provides the capability to download the certificate. However, for security reasons, the private key encrypted in FortiGate cannot be accessed. To successfully restore the private key, you need to find the matched origin key to import the certificate to another FortiGate device.

Previous
Next