FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
js2
Staff
Staff
Article Id 191311
Description
This article describes the error 'Your connection is not private' when a web server is hosted behind FortiGate and not accessible via HTTPS.

Solution
If FortiGate default certificate is used, it is expected that the certificate error will be shown since it is a self-signed CA and it will not be trusted by any browsers.
If the certificate is already signed and if the CSR is generated on a different computer then:

- The certificate in CRT/DER format is needed and the private key in PEM format and then import both the files as local certificate.
- Or get the certificate in PFX format along with the password and then import it on the firewall as a local certificate.

Once imported select on the deep inspection SSL profile using 'Protect SSL server' option.

Contributors