This is the first of a series that will detail lab exercises that I designed and implemented during my studying for the Fortinet NSE 4 exam. I hope they help in your studying. As of Oct 1, 2023, this exam is now the core exam for the Fortinet FCP Network Security Certification.
Topology: I am using an NGFW Policy-Based VDOM on my Fortigate 201F to do the SSL inspection. The Windows laptop will be the https client that is accessing the Internet.
We get an untrusted certificate warning on the client’s initial attempt to access the Internet. Per the Fortinet documentation, we need to install Fortinet’s trusted SSL certificate in the certificate store of our web client.
We can download the certificate from Fortigate.
Install the certificate in the client’s certificate store. Make sure you install it in the Trusted store. Subsequent attempts to access the internet on the Windows client don’t get the untrusted certificate warning.
Note traffic on our SSL Inspection Policy.
