Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Installing SSL Certificates

    Home FortiNAC-F 7.2.0 Installing SSL Certificates
    7.2.0
    7.6.0
    7.4.0
    7.2.0

    Troubleshooting

    Troubleshooting

    Related KB Articles

    Private Key error when installing renewed SSL certificate

    Invalid private key error while installing SSL certificate

    Convert SSL private key to RSA format

    Export SSL certificate and private key from keystore

    Create SSL Certificate Bundle with Files Returned from Certificate Authority

    Identify missing SSL certificates via administration UI

    'One or more certificates are invalid' error

    Error when updating Portal SSL mode or portal SSL certificate

    If something is wrong with the uploaded certificate files, FortiNAC will display an error and will not apply the certificate.

    Common Causes for Certificate Upload Errors

    • The wildcard name (e.g., *.yourcompany.com) was placed in the Fully- Qualified Host Name Field in the Portal SSL view under System > Settings > Security. To correct, change the entry to the true Fully-Qualified Host Name and click Save Settings.

    • There are extra spaces, characters, and/or carriage returns above, below, or within the text body of any of the files.

    • The certificate was not generated with the current key and there is mismatch.

      This can happen if the OK button in the Generate CSR screen had been clicked after saving the Certificate Request. Each time OK is clicked on the Generate CSR screen, a new CSR and private key are created, overwriting any previous private key.

      To confirm the certificate and key match, use the following tool: https://www.sslshopper.com/certificate-key-matcher.html

    If the key and certificate do not match, generate a new CSR and submit for a new certificate.

    Contact Support for further assistance.

    Previous
    Next

    Troubleshooting

    Troubleshooting

    Related KB Articles

    Private Key error when installing renewed SSL certificate

    Invalid private key error while installing SSL certificate

    Convert SSL private key to RSA format

    Export SSL certificate and private key from keystore

    Create SSL Certificate Bundle with Files Returned from Certificate Authority

    Identify missing SSL certificates via administration UI

    'One or more certificates are invalid' error

    Error when updating Portal SSL mode or portal SSL certificate

    If something is wrong with the uploaded certificate files, FortiNAC will display an error and will not apply the certificate.

    Common Causes for Certificate Upload Errors

    • The wildcard name (e.g., *.yourcompany.com) was placed in the Fully- Qualified Host Name Field in the Portal SSL view under System > Settings > Security. To correct, change the entry to the true Fully-Qualified Host Name and click Save Settings.

    • There are extra spaces, characters, and/or carriage returns above, below, or within the text body of any of the files.

    • The certificate was not generated with the current key and there is mismatch.

      This can happen if the OK button in the Generate CSR screen had been clicked after saving the Certificate Request. Each time OK is clicked on the Generate CSR screen, a new CSR and private key are created, overwriting any previous private key.

      To confirm the certificate and key match, use the following tool: https://www.sslshopper.com/certificate-key-matcher.html

    If the key and certificate do not match, generate a new CSR and submit for a new certificate.

    Contact Support for further assistance.

    Previous
    Next