openssl req -new -x509 -days 3650 -keyout caprivatekey.pem -out cacertificate.pemcacertificate.pem is the public key and should be imported into the FortiGate and the user browser.
openssl ca -out VPNSSL.cer -infiles /root/Downloads/VPNSSL.csr
openssl req -new -nodes -out usercert.csr -keyout usercert.key
openssl ca -out usercert.cer -infiles usercert.csr
openssl pkcs12 -export -out usercert.pfx -inkey usercert.key -in usercert.cer
config user peer
edit "pkiuser"
set ca "CA_Cert_1"
set two-factor enable
set passwd
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.