Fortinet black logo

Handbook

Configuring certificate caching

Configuring certificate caching

Certificate caching allows the system to cache the certificates presented to it for later use. Once cached, the certificates can be readily retrievable from the cache so that the system does not have to reload them when clients requesting service. In so doing, system performance can be greatly improved.

Configuring a certificate caching object

  1. Click Server Load Balance > SSL-FP Resources.
  2. Click the Certificate Caching tab.
  3. Click Create New to open the certificate caching editor.
  4. Make the desired entries as described in Certificate caching configuration guidelines.
  5. Click Save.

Certificate caching configuration guidelines

Settings Guidelines

Name

Enter a unique name for the certificate caching rule.

Maximum Certificate Cache Size

Specify the maximum size of the certificate caching object. The default is 100 M.

Maximum entries

Specify the maximum number of real servers whose certificates (RSA + ECDSA) are to be cached. The default is 100,000.

Configuring certificate caching

Certificate caching allows the system to cache the certificates presented to it for later use. Once cached, the certificates can be readily retrievable from the cache so that the system does not have to reload them when clients requesting service. In so doing, system performance can be greatly improved.

Configuring a certificate caching object

  1. Click Server Load Balance > SSL-FP Resources.
  2. Click the Certificate Caching tab.
  3. Click Create New to open the certificate caching editor.
  4. Make the desired entries as described in Certificate caching configuration guidelines.
  5. Click Save.

Certificate caching configuration guidelines

Settings Guidelines

Name

Enter a unique name for the certificate caching rule.

Maximum Certificate Cache Size

Specify the maximum size of the certificate caching object. The default is 100 M.

Maximum entries

Specify the maximum number of real servers whose certificates (RSA + ECDSA) are to be cached. The default is 100,000.