Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • Installing SSL Certificates

    Home FortiNAC-F 7.2.0 Installing SSL Certificates
    7.2.0
    7.6.0
    7.4.0
    7.2.0

    Issuing a Self-Signed Certificate

    Issuing a Self-Signed Certificate

    FortiNAC issues its own certificate. This option is not as secure, but can be used in the event there are no certificates issued by a third party or internal Certificate Authority that are available.

    Important: This type of certificate cannot be used for the Persistent Agent certificate target (for Persistent Agent communication) or the Portal target when using Dissolvable Agents.

    To generate a Self-Signed Certificate:

    1. Select System > Certificate Management.

    2. Click GenerateCSR.

    3. Select the certificate target.

      Admin UI: Generates CSR for the Administration User Interface.

      Persistent Agent: Not recommended when using Self-Signed Certificates.

      Portal: Not recommended when using Self-Signed Certificates.

    4. Select Use Result as Self-Signed Certificate

    5. Enter the Common Name (Fully-Qualified Host Name). This is the Host Name to be secured by the certificate.

    6. Click OK.

    7. Import the certificate to the endstations accessing this target (Admin UI, Persistent Agent or Portal) in order to establish trust. There are various methods to do this. See Import Self-Signed Certificates.

    Previous
    Next

    Issuing a Self-Signed Certificate

    Issuing a Self-Signed Certificate

    FortiNAC issues its own certificate. This option is not as secure, but can be used in the event there are no certificates issued by a third party or internal Certificate Authority that are available.

    Important: This type of certificate cannot be used for the Persistent Agent certificate target (for Persistent Agent communication) or the Portal target when using Dissolvable Agents.

    To generate a Self-Signed Certificate:

    1. Select System > Certificate Management.

    2. Click GenerateCSR.

    3. Select the certificate target.

      Admin UI: Generates CSR for the Administration User Interface.

      Persistent Agent: Not recommended when using Self-Signed Certificates.

      Portal: Not recommended when using Self-Signed Certificates.

    4. Select Use Result as Self-Signed Certificate

    5. Enter the Common Name (Fully-Qualified Host Name). This is the Host Name to be secured by the certificate.

    6. Click OK.

    7. Import the certificate to the endstations accessing this target (Admin UI, Persistent Agent or Portal) in order to establish trust. There are various methods to do this. See Import Self-Signed Certificates.

    Previous
    Next