Description
When trying to import a Server Certificate generated from a Microsoft IIS server, the FortiGate unit displays the following error message: ''Failed to import File''.
Solution
These files must then be imported via the GUI as shown below:
When trying to import a Server Certificate generated from a Microsoft IIS server, the FortiGate unit displays the following error message: ''Failed to import File''.
Solution
Two separate files must be generated from the .PFX file. The first one must contain the private key, the second the certificate required for authentication.
To generate the files you can use the openssl tool available at www.openssl.org :
1. Export the Private Keys out of the PFX file.
To generate the files you can use the openssl tool available at www.openssl.org :
1. Export the Private Keys out of the PFX file.
openssl pkcs12 -in filename.pfx -nocerts -out privatekey.key
You have to provide a password if the private key is encrypted in the PFX file
2. Export the Certificate out of the PFX file.
openssl pkcs12 -in filename.pfx -clcerts -nokeys -out certfilename.crt
3. Import the Certificate file and the key file into FortiGate.
System -> Certificates -> Local Certificate -> Import -> Type Certificate
Select Certificate File and Key File and provide the private key encryption PW .
These files must then be imported via the GUI as shown below:
