Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Script Reference Guide

    Home FortiADC 7.6.1 Script Reference Guide
    7.6.1
    8.0.0
    7.6.1
    7.6.0
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.7
    7.2.4
    7.2.0
    6.2.0
    5.4.1
    5.4.0
    5.3.0

    SSL commands

    SSL commands

    SSL commands contain functions for obtaining SSL related information, such as obtaining certificates and SNI:

    • SSL:cipher() — Returns the cipher in the handshake.

    • SSL:version() — Returns the SSL version in the handshake.

    • SSL:alg_keysize() — Returns the SSL encryption key size in the handshake.

    • SSL:client_cert() — Returns the status of client-certificate-verify, whether or not it is enabled.

    • SSL:sni() — Returns the SNI or false (if no SNI).

    • SSL:npn() — Returns the next protocol negotiation string or false (if no NPN).

    • SSL:alpn() — Allows you to get the SSL ALPN extension.

    • SSL:session(t) — Allows you to get SSL session ID, reuse the session, or remove it from the cache.

    • SSL:cert(t) — Allows you to get the certificate information between local or remote.

    • SSL:peer_cert(str) — Returns the peer certificate in different formats.

    • SSL:disable() — Disables SSL processing on either the client or server side when non-SSL traffic is expected or desired.

    • SSL:cert_request() — Requests the client certificate and verifies it. This command returns Boolean true if successful, otherwise, returns Boolean false.

    • SSL:get_verify_depth() — Gets the client certificate verify depth. This command returns the depth as an integer.

    • SSL:renegotiate() — Requests the client side SSL renegotiation. This command returns Boolean true if successful, otherwise, returns Boolean false. Note that if renegotiation fails, this request will fail; we recommend only using this command if renegotiation is necessary.

    • SSL:set_verify_depth() — Sets the client certificate verify depth. This command returns Boolean true if successful, otherwise, returns Boolean false.

    • SSL:verify_result() — Gets the certificate verify result. This command returns the result as an integer.

    Previous
    Next

    SSL commands

    SSL commands

    SSL commands contain functions for obtaining SSL related information, such as obtaining certificates and SNI:

    • SSL:cipher() — Returns the cipher in the handshake.

    • SSL:version() — Returns the SSL version in the handshake.

    • SSL:alg_keysize() — Returns the SSL encryption key size in the handshake.

    • SSL:client_cert() — Returns the status of client-certificate-verify, whether or not it is enabled.

    • SSL:sni() — Returns the SNI or false (if no SNI).

    • SSL:npn() — Returns the next protocol negotiation string or false (if no NPN).

    • SSL:alpn() — Allows you to get the SSL ALPN extension.

    • SSL:session(t) — Allows you to get SSL session ID, reuse the session, or remove it from the cache.

    • SSL:cert(t) — Allows you to get the certificate information between local or remote.

    • SSL:peer_cert(str) — Returns the peer certificate in different formats.

    • SSL:disable() — Disables SSL processing on either the client or server side when non-SSL traffic is expected or desired.

    • SSL:cert_request() — Requests the client certificate and verifies it. This command returns Boolean true if successful, otherwise, returns Boolean false.

    • SSL:get_verify_depth() — Gets the client certificate verify depth. This command returns the depth as an integer.

    • SSL:renegotiate() — Requests the client side SSL renegotiation. This command returns Boolean true if successful, otherwise, returns Boolean false. Note that if renegotiation fails, this request will fail; we recommend only using this command if renegotiation is necessary.

    • SSL:set_verify_depth() — Sets the client certificate verify depth. This command returns Boolean true if successful, otherwise, returns Boolean false.

    • SSL:verify_result() — Gets the certificate verify result. This command returns the result as an integer.

    Previous
    Next