Consider the scenario where the server name indication (SNI) does not match either the common name (CN) or any of the subject alternative names (SAN) in the server certificate. Which action will FortiGate take when using the default settings for SSL certificate inspection?
SNI and Certificate Mismatch: When the Server Name Indication (SNI) does not match either the Common Name (CN) or any of the Subject Alternative Names (SAN) in the server certificate, FortiGate's default behavior is to consider this as an invalid SSL/TLS configuration.
Default Action: FortiGate, under default settings for SSL certificate inspection, will close the connection to prevent potential security risks associated with mismatched certificates.
Otis
5 months agoShawnda
5 months agoEvan
3 months agoHeike
3 months agoMary
4 months agoJose
4 months agoRomana
4 months agoKathrine
4 months agoWilda
5 months agoDustin
4 months agoMarge
4 months agoTwana
4 months agoHelene
4 months agoMirta
4 months agoOren
5 months agoErasmo
5 months agoStevie
5 months agoJesus
5 months agoShasta
6 months agoLindsey
6 months agoLuisa
5 months agoPansy
5 months agoCyril
5 months ago