config : system certificate verify
 
system certificate verify
Use this command to configure how the FortiWeb appliance will verify certificates presented by HTTP clients.
To apply a certificate verification rule, select it in a policy. For details, see “config server-policy policy”.
To use this command, your administrator account’s access control profile must have either w or rw permission to the admingrp area. For more information, see “Permissions”.
Syntax
config system certificate verify
edit <certificate_verificator_name>
set ca <ca-group_name>
set crl <crl_name>
next
end
Variable
Description
Default
<certificate_verificator_name>
Type the name of a certificate verifier. The maximum length is 35 characters.
No default.
ca <ca-group_name>
Type the name of a CA group, if any, that you want to use to authenticate client certificates. The maximum length is 35 characters.
No default.
crl <crl_name>
Type the name of a certificate revocation list, if any, to use to verify the revocation status of client certificates. The maximum length is 35 characters.
No default.
Related topics
config system certificate ca-group
config system certificate crl
config server-policy policy
config server-policy server-pool