Fortinet black logo

CLI Reference

Home FortiProxy 2.0.12 CLI Reference
2.0.12
7.4.4
7.4.3
7.4.2
7.4.1
7.4.0
7.2.10
7.2.9
7.2.8
7.2.7
7.2.6
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.0.17
7.0.15
7.0.14
7.0.13
7.0.12
7.0.11
7.0.10
7.0.9
7.0.8
7.0.7
2.0.13
2.0.12
2.0.0
1.2.4

config certificate ca

config certificate ca

CA certificate.

config certificate ca
    Description: CA certificate.
    edit <name>
        set ca {user}
        set source [factory|user|...]
        set trusted [enable|disable]
        set scep-url {string}
        set auto-update-days {integer}
        set auto-update-days-warning {integer}
        set source-ip {ipv4-address}
    next
end

config certificate ca

Parameter

Description

Type

Size

ca

CA certificate as a PEM file.

user

Not Specified

source

CA certificate source type.

option

-

Option

Description

factory

Factory installed certificate.

user

User generated certificate.

bundle

Bundle file certificate.

fortiguard

FortiGuard generated certificate.

trusted

Enable/disable as a trusted CA.

option

-

Option

Description

enable

Trusted CA.

disable

Untrusted CA.

scep-url

URL of the SCEP server.

string

Maximum length: 255

auto-update-days

Number of days to wait before requesting an updated CA certificate .

integer

Minimum value: 0 Maximum value: 4294967295

auto-update-days-warning

Number of days before an expiry-warning message is generated .

integer

Minimum value: 0 Maximum value: 4294967295

source-ip

Source IP address for communications to the SCEP server.

ipv4-address

Not Specified
Previous
Next

config certificate ca

CA certificate.

config certificate ca
    Description: CA certificate.
    edit <name>
        set ca {user}
        set source [factory|user|...]
        set trusted [enable|disable]
        set scep-url {string}
        set auto-update-days {integer}
        set auto-update-days-warning {integer}
        set source-ip {ipv4-address}
    next
end

config certificate ca

Parameter

Description

Type

Size

ca

CA certificate as a PEM file.

user

Not Specified

source

CA certificate source type.

option

-

Option

Description

factory

Factory installed certificate.

user

User generated certificate.

bundle

Bundle file certificate.

fortiguard

FortiGuard generated certificate.

trusted

Enable/disable as a trusted CA.

option

-

Option

Description

enable

Trusted CA.

disable

Untrusted CA.

scep-url

URL of the SCEP server.

string

Maximum length: 255

auto-update-days

Number of days to wait before requesting an updated CA certificate .

integer

Minimum value: 0 Maximum value: 4294967295

auto-update-days-warning

Number of days before an expiry-warning message is generated .

integer

Minimum value: 0 Maximum value: 4294967295

source-ip

Source IP address for communications to the SCEP server.

ipv4-address

Not Specified
Previous
Next