Enabling PKI authentication globally with CLI
Use this procedure to enable PKI authentication globally. PKI authentication is enabled globally using the command line interface (CLI). Using CLI ensure that PKI authentication is enabled for all domains.
For more information on CLI commands, see the
FortiMail CLI Reference.To enable PKI authentication with CLI
1. Open a CLI session on the FortiMail unit.
2. Enter the following CLI commands:
config system global
set pki-mode enable
end
PKI authentication is now enabled for all designated users (email and administrator) and domains.
From this point forward, when email users access their webmail, or when administrators connect to the FortiMail unit, they will be prompted to confirm their client certificate when connecting to FortiMail.
Proceed to
“Testing PKI authentication” to validate that PKI authentication is working properly.