Fortinet black logo

CLI Reference

vpn certificate remote

vpn certificate remote

Use this command to install remote certificates and configure basic settings. The remote certificates are public certificates without a private key, and used as OCSP server certificates.

History

The following table shows all newly added, changed, or removed entries as of FortiOS 6.0.5.

Command Description

set source {factory | user | bundle}

The fortiguard option has been removed

config vpn certificate remote
    edit {name}
    # Remote certificate as a PEM file.
        set name {string}   Name. size[35]
        set remote {string}   Remote certificate.
        set range {global | vdom}   Either the global or VDOM IP address range for the remote certificate.
                global  Global range.
                vdom    VDOM IP address range.
        set source {factory | user | bundle}   Remote certificate source type.
                factory  Factory installed certificate.
                user     User generated certificate.
                bundle   Bundle file certificate.
    next
end

remote <cert>

Name of the remote certificate, in PEM format.

range {global | vdom}

Either global (by default) or vdom IP address range for the certificate.

source {factory | user | bundle}

Select the certificate's source:

  • factory: Default certificate that came with the FortiGate
  • user: User certificate (set by default)
  • bundle: Certificate from a bundle file

vpn certificate remote

Use this command to install remote certificates and configure basic settings. The remote certificates are public certificates without a private key, and used as OCSP server certificates.

History

The following table shows all newly added, changed, or removed entries as of FortiOS 6.0.5.

Command Description

set source {factory | user | bundle}

The fortiguard option has been removed

config vpn certificate remote
    edit {name}
    # Remote certificate as a PEM file.
        set name {string}   Name. size[35]
        set remote {string}   Remote certificate.
        set range {global | vdom}   Either the global or VDOM IP address range for the remote certificate.
                global  Global range.
                vdom    VDOM IP address range.
        set source {factory | user | bundle}   Remote certificate source type.
                factory  Factory installed certificate.
                user     User generated certificate.
                bundle   Bundle file certificate.
    next
end

remote <cert>

Name of the remote certificate, in PEM format.

range {global | vdom}

Either global (by default) or vdom IP address range for the certificate.

source {factory | user | bundle}

Select the certificate's source:

  • factory: Default certificate that came with the FortiGate
  • user: User certificate (set by default)
  • bundle: Certificate from a bundle file