execute : certificate local
 
certificate local
Use this command to upload a server certificate from a TFTP server. You also use it to upload a client certificate for FortiWeb.
For more information about server certificates, see “config system certificate local”.
Syntax
execute certificate local {cert | pkcs12-cert} import tftp {<vdom_name> | root} <cert_name> <key_name> <tftp_ipv4> <password_str>
Variable
Description
Default
{cert | pkcs12-cert}
Use one of the following options to specify the type of certificate file to upload:
cert — An unencrypted certificate in PEM format. The key is in a separate file.
pkcs12-cert — A PKCS #12 encrypted certificate with key.
No default.
{<vdom_name> | root}
Specifies the administrative domain (ADOM) that the certificate applies to.
If ADOMs are not enabled, specify root.
root
<cert_name>
Specifies the name of the certificate file.
No default.
<key_name>
If the certificate is unencrypted with the key in a separate file, specifies the key file to upload with the certificate.
No default.
<tftp_ipv4>
Specifies the IP address of the TFTP server.
No default.
<password_str>
If the certificate is encrypted, specify the password that was used to encrypt the file.
If the certificate is not encrypted, FortiWeb ignores this value.
No default.
Example
This example uploads the certificate file pc40.crt and its key file pc40.key from the TFTP server 192.168.1.23. The certificate is encrypted using the password fortinet.
execute certificate local cert import tftp root pc40.crt pc40.key 192.168.1.23 fortinet
This example uploads the certificate file frompc31.pfx from the TFTP server 192.168.1.23. The certificate is encrypted using the password fortinet.
execute certificate local pkcs12-cert import tftp root frompc31.pfx 192.168.1.23 fortinet
Related topics
config system certificate local
execute certificate ca
execute certificate crl
execute certificate inter-ca