Fortinet black logo

Installing SSL Certificates

Home FortiNAC-F 7.2.0 Installing SSL Certificates
7.2.0
7.4.0
7.2.0

Issuing a Self-Signed Certificate

Issuing a Self-Signed Certificate

FortiNAC issues its own certificate. This option is not as secure, but can be used in the event there are no certificates issued by a third party or internal Certificate Authority that are available.

Important: This type of certificate cannot be used for the Persistent Agent certificate target (for Persistent Agent communication) or the Portal target when using Dissolvable Agents.

To generate a Self-Signed Certificate:

  1. Select System > Certificate Management.

  2. Click GenerateCSR.

  3. Select the certificate target.

    Admin UI: Generates CSR for the Administration User Interface.

    Persistent Agent: Not recommended when using Self-Signed Certificates.

    Portal: Not recommended when using Self-Signed Certificates.

  4. Select Use Result as Self-Signed Certificate

  5. Enter the Common Name (Fully-Qualified Host Name). This is the Host Name to be secured by the certificate.

  6. Click OK.

  7. Import the certificate to the endstations accessing this target (Admin UI, Persistent Agent or Portal) in order to establish trust. There are various methods to do this. See Import Self-Signed Certificates.

Previous
Next

Issuing a Self-Signed Certificate

FortiNAC issues its own certificate. This option is not as secure, but can be used in the event there are no certificates issued by a third party or internal Certificate Authority that are available.

Important: This type of certificate cannot be used for the Persistent Agent certificate target (for Persistent Agent communication) or the Portal target when using Dissolvable Agents.

To generate a Self-Signed Certificate:

  1. Select System > Certificate Management.

  2. Click GenerateCSR.

  3. Select the certificate target.

    Admin UI: Generates CSR for the Administration User Interface.

    Persistent Agent: Not recommended when using Self-Signed Certificates.

    Portal: Not recommended when using Self-Signed Certificates.

  4. Select Use Result as Self-Signed Certificate

  5. Enter the Common Name (Fully-Qualified Host Name). This is the Host Name to be secured by the certificate.

  6. Click OK.

  7. Import the certificate to the endstations accessing this target (Admin UI, Persistent Agent or Portal) in order to establish trust. There are various methods to do this. See Import Self-Signed Certificates.

Previous
Next