Fortinet white logo
Fortinet white logo

Administration Guide

Certificates

Certificates

In this page you can import, view, download and delete certificates. Certificates are used for secure connection to an LDAP server, system HTTPS and SSH services. The FortiSandbox has one default certificate firmware which means the certificate is installed on the unit by Fortinet.

FortiSandbox does not generate certificates, but does support importing certificates for SSH and HTTPS access to FortiSandbox. The following formats are supported:.crt and .pem .

The following options are available:

Import

Import a certificate.

Service

Select to configure specific certificates for the HTTP and SSH servers.

View

Select a certificate in the list and select View in the toolbar to view the CA certificate details.

Delete

Select a certificate in the list and select Delete in the toolbar to delete the certificate.

The following information is displayed:

Name

The name of the certificate.

Subject

The subject of the certificate.

Status

The certificate status, active or expired.

Service

HTTPS or SSH service that is using this certificate.

Certificate

Download the server certificate.

Sub Certificate

Download the intermediate CA (Certificate Authority) certificate if you are using a certificate chain.

Cacert

Download the CA (Certificate Authority) certificate.

To import a certificate:
  1. Go to System > Certificates.
  2. Click Import from the toolbar.
  3. Enter the certificate name in the text field.
  4. Click Upload Certificate and Upload Key from your management computer.

  5. Optionally, you can import the intermediate CA certificate by clicking the Upload Sub Certificate.

  6. Click OK to import the certificate.

You also have the option to import a Password Protected PKCS12 Certificate. To import a PKCS12 Certificate, check the PKCS12 Format box upon importing a new certificate and enter the password. When checking the PKCS12 Format box, the other upload buttons will be hidden and are replaced by the Upload PKCS12 File button.

To view a certificate:
  1. Go to System > Certificates.
  2. Select the certificate from the list and click View from the toolbar.
  3. The following information is available:

    Certificate Name

    The name of the certificate.

    Status

    The certificate status.

    Serial number

    The certificate serial number.

    Issuer

    The issuer of the certificate.

    Subject

    The subject of the certificate.

    Effective date

    The date and time that the certificate became effective.

    Expiration date

    The date and time that the certificate expires.

  4. Click Back to return to the Certificates page.
To download a CA certificate:
  1. Go to System > Certificates.
  2. Click the download icon in one of the columns: Certificate, Sub Certificate, or Cacert.
To delete a CA certificate:
  1. Go to System > Certificates.
  2. Select the certificate from the list and click Delete from the toolbar.
  3. Click OK in the Are You Sure confirmation page.

Firmware certificate(s) cannot be deleted.

Certificates

Certificates

In this page you can import, view, download and delete certificates. Certificates are used for secure connection to an LDAP server, system HTTPS and SSH services. The FortiSandbox has one default certificate firmware which means the certificate is installed on the unit by Fortinet.

FortiSandbox does not generate certificates, but does support importing certificates for SSH and HTTPS access to FortiSandbox. The following formats are supported:.crt and .pem .

The following options are available:

Import

Import a certificate.

Service

Select to configure specific certificates for the HTTP and SSH servers.

View

Select a certificate in the list and select View in the toolbar to view the CA certificate details.

Delete

Select a certificate in the list and select Delete in the toolbar to delete the certificate.

The following information is displayed:

Name

The name of the certificate.

Subject

The subject of the certificate.

Status

The certificate status, active or expired.

Service

HTTPS or SSH service that is using this certificate.

Certificate

Download the server certificate.

Sub Certificate

Download the intermediate CA (Certificate Authority) certificate if you are using a certificate chain.

Cacert

Download the CA (Certificate Authority) certificate.

To import a certificate:
  1. Go to System > Certificates.
  2. Click Import from the toolbar.
  3. Enter the certificate name in the text field.
  4. Click Upload Certificate and Upload Key from your management computer.

  5. Optionally, you can import the intermediate CA certificate by clicking the Upload Sub Certificate.

  6. Click OK to import the certificate.

You also have the option to import a Password Protected PKCS12 Certificate. To import a PKCS12 Certificate, check the PKCS12 Format box upon importing a new certificate and enter the password. When checking the PKCS12 Format box, the other upload buttons will be hidden and are replaced by the Upload PKCS12 File button.

To view a certificate:
  1. Go to System > Certificates.
  2. Select the certificate from the list and click View from the toolbar.
  3. The following information is available:

    Certificate Name

    The name of the certificate.

    Status

    The certificate status.

    Serial number

    The certificate serial number.

    Issuer

    The issuer of the certificate.

    Subject

    The subject of the certificate.

    Effective date

    The date and time that the certificate became effective.

    Expiration date

    The date and time that the certificate expires.

  4. Click Back to return to the Certificates page.
To download a CA certificate:
  1. Go to System > Certificates.
  2. Click the download icon in one of the columns: Certificate, Sub Certificate, or Cacert.
To delete a CA certificate:
  1. Go to System > Certificates.
  2. Select the certificate from the list and click Delete from the toolbar.
  3. Click OK in the Are You Sure confirmation page.

Firmware certificate(s) cannot be deleted.