Certificates
In this page you can import, view, download and delete certificates. Certificates are used for secure connection to an LDAP server, system HTTPS and SSH services. The FortiSandbox has one default certificate firmware which means the certificate is installed on the unit by Fortinet.
FortiSandbox does not generate certificates, but does support importing certificates for SSH and HTTPS access to FortiSandbox. The following formats are supported: |
The following options are available:
Import |
Import a certificate. |
Service |
Select to configure specific certificates for the HTTP and SSH servers. |
View |
Select a certificate in the list and select View in the toolbar to view the CA certificate details. |
Delete |
Select a certificate in the list and select Delete in the toolbar to delete the certificate. |
The following information is displayed:
Name |
The name of the certificate. |
Subject |
The subject of the certificate. |
Status |
The certificate status, active or expired. |
Service |
HTTPS or SSH service that is using this certificate. |
Certificate |
Download the server certificate. |
Sub Certificate |
Download the intermediate CA (Certificate Authority) certificate if you are using a certificate chain. |
Cacert |
Download the CA (Certificate Authority) certificate. |
To import a certificate:
- Go to System > Certificates.
- Click Import from the toolbar.
- Enter the certificate name in the text field.
-
Click Upload Certificate and Upload Key from your management computer.
-
Optionally, you can import the intermediate CA certificate by clicking the Upload Sub Certificate.
- Click OK to import the certificate.
You also have the option to import a Password Protected PKCS12 Certificate. To import a PKCS12 Certificate, check the PKCS12 Format box upon importing a new certificate and enter the password. When checking the PKCS12 Format box, the other upload buttons will be hidden and are replaced by the Upload PKCS12 File button. |
To view a certificate:
- Go to System > Certificates.
- Select the certificate from the list and click View from the toolbar.
- The following information is available:
Certificate Name
The name of the certificate.
Status
The certificate status.
Serial number
The certificate serial number.
Issuer
The issuer of the certificate.
Subject
The subject of the certificate.
Effective date
The date and time that the certificate became effective.
Expiration date
The date and time that the certificate expires.
- Click Back to return to the Certificates page.
To download a CA certificate:
- Go to System > Certificates.
- Click the download icon in one of the columns: Certificate, Sub Certificate, or Cacert.
To delete a CA certificate:
- Go to System > Certificates.
- Select the certificate from the list and click Delete from the toolbar.
- Click OK in the Are You Sure confirmation page.
Firmware certificate(s) cannot be deleted. |