Certificate revocation lists
When you apply for a signed personal or group certificate to install on remote clients, you can obtain the corresponding root certificate and Certificate Revocation List (CRL) from the issuing CA. When you receive the signed personal or group certificate, install the signed certificate on the remote client(s) according to the browser documentation. Install the corresponding root certificate (and CRL) from the issuing CA on the FortiAnalyzer unit according to the procedures given below.
To import a CRL:
1. Go to System Settings > Certificates > CRL.
2. Select the Import button.
The Import dialog box opens.
3. Select Choose File, browse to the location of the CRL, and select OK.
4. Select Choose File, browse to the location of the certificate, and select OK.
To view a CRL:
1. Go to System Settings > Certificates > CRL.
2. Select the CRL that you would like to see details about, then select View Certificate Detail.
The Result page opens.
3. When you are finished viewing the CRL details, select OK to return to the CRL list.
To delete a CRL:
1. Go to System Settings > Certificates > CRL.
2. Select the CRL or CRLs that you would like to delete and select Delete.
3. Select OK in the confirmation dialog box to delete the CRL.