Self-Signed Certificates for SSL Inspection

  • FortiGate 5.2
  • 3 years ago

In this video, you will learn how to prevent your users from getting security errors when you have full SSL inspection enabled. You will create a custom self-signed certificate with OpenSSL and then install it on your FortiGate. Unalike the FortiGate’s default certificate; this custom certificate will provide a chain of trust that allows network users to trust the FortiGate as a CA in its own right. Once the FortiGate is trusted, your users should not see any more certificate warnings. Note: This video uses OpenSSL Version 0.9.8h-1. Visit Fortinet's documentation library at or our cookbook site at Best viewed in 1080p.