UI method: upload the certificate received from the CA
Upload the valid SSL certificate to the appliance when the certificate file is returned from the CA. Certificate files can be returned to you in one of several configurations. Depending upon the CA, one or multiple certificate files may be returned.
-
Save the file(s) received from the CA to your PC.
-
Select System > Settings.
-
Expand the Security folder.
-
Select Certificate Management from the tree.
-
Click Upload Certificate.
-
Select the target where the certificate will be uploaded.
-
Select Admin UI to install the certificate for the administrative user interface.
-
Select Persistent Agent to install certificate for the PA communications.
-
Select Portal to install the certificate to secure the captive portal.
-
Select RADIUS Server to install the certificate for integrated FortiNAC RADIUS server set to use 802.1x and PEAP.
-
- Do one of the following:
- Select Use Private Key from Last Generated CSR to use the key from the most recent CSR for the selected target.
- Select Reuse Private Key from Existing Certificate to use the private key for the certificate currently in use. This option is for renewing an existing installed certificate.
- Select Upload Private Key to upload a key stored outside FortiNAC. Click Choose to find and upload the private key.
-
Click the Choose File button to find and select the certificate to be uploaded. Users can also upload CA certificates and CA bundles.
-
Upload any relevant intermediate certificate files needed for the creation of a complete certificate chain of authority. The Certificate Authority should be able to provide these files. Without a complete certificate chain of authority, the target functionality may produce error/warning messages.
-
Click the Add Certificate button if multiple certificates were returned. Use this to enter each additional certificate file.
-
Click OK.